Apple logo on a store showing data leak

Tata Electronics Data Leak Exposes Apple iPhone Pro Supplier List, Parts, and Photos

Tata Electronics data leak exposed Apple iPhone 18 Pro supplier list, parts, and photos, potentially undermining Apple’s tightly guarded product secrecy ahead of the device’s official launch.

Tata accounts for about a third of Apple’s iPhone manufacturing outside China, while Foxconn accounts for the rest.

The emerging ransomware group World Leaks claimed responsibility for the data breach and leaked 630.4 GB of data, containing about 204,341 files.

Tata Electronics data leak exposes part and supplier mappings

According to experts who analyzed the stolen data, at least six files mapped iPhone 18 Pro parts with suppliers. The exposure of Apple’s supplier list could expose manufacturers producing various components, potentially revealing critical supply chain relationships that Apple closely guards.

Competitors and cybercriminals could target those suppliers to disrupt the launch of the iPhone 18 Pro and Pro Max, expected in September 2026. Apple relies on a handful of suppliers, making it vulnerable to supply chain disruptions.

Typically, the tech giant does not include this information on its public database, making its disclosure potentially consequential. Its exposure could weaken Apple’s negotiating power when the listed suppliers realize that it sources components from a few vendors. Nevertheless, the data leak is a wake-up call for Apple to diversify and vet its suppliers to prevent potential supply chain disruptions.

“Vendor risk assessments cover a subsidiary’s patch management and incident response,” said Jacob Krell, Senior Director, Secure AI Solutions & Cybersecurity, Suzu Labs. “Nobody asks whether the parent runs shared authentication or IT platforms across all its business units. A compromise at one Tata subsidiary might hand attackers credential access or reconnaissance into another, and no vendor assessment I’ve seen would catch it.”

The data leak also exposed design features of the iPhone 18 Pro, including the main circuit board, processors, battery, and camera modules. Photographs of the iPhone 18 Pro undergoing durability testing, including drop tests, were also exposed.

“World Leaks never encrypted Tata’s systems,” added Krell. “They didn’t need to. When you hold unreleased iPhone 18 Pro supplier maps and drop test photos with Apple ‘confidential’ watermarks, the data is the weapon. The extortion math works because losing an Apple contract costs Tata more than paying any ransom.”

According to leaked photos, the iPhone 18 Pro is a slab-shaped, gray device with a triple-lens main camera and an Apple logo on the front. However, experts who assessed the photos could not independently verify their authenticity or their resemblance to the upcoming iPhone 18 Pro. Nevertheless, some were designated “confidential” and were consistent with the expected design features of the anticipated iPhone 18 Pro models.

Leaking the components and physical designs of the upcoming iPhone 18 Pro could enable industry experts to assess the expected features, potentially affecting its reception when it finally hits the market.

The data leak also included component designs for older iPhone models and proprietary information for Tesla and other manufacturing giants, including Pegatron, Foxconn, Taiwan Semiconductor Manufacturing Co., Ltd. (TSMC), and Qualcomm.

Meanwhile, Tata has responded to the data leak by restricting employee access to certain internal materials and hiring external cybersecurity experts to investigate the breach in coordination with Apple.

Nevertheless, the data leak could strain Apple’s relationship with one of its most strategic manufacturers outside China, which is responsible for more than a quarter of iPhone production. Tata assembles iPhones and supplies parts to Apple, making it a highly strategic partner for the Cupertino-based tech company.

Nevertheless, this is hardly the first time hackers have targeted high-profile tech giants via third-party vendors. In December 2025, the Russian ransomware group RansomHouse compromised Apple, Nvidia, Qualcomm, LG, Meta, Geely, and Tesla through a third-party supplier, Luxshare.

Apple has also experienced product leaks in the past. In 2021, the REvil ransomware gang breached Taiwan-based Quanta Computer and leaked designs for the M1 MacBook Pro.

“This is the third Tata Group subsidiary breached in roughly 18 months,” added Krell. “Scattered Spider hit TCS to reach Marks & Spencer, and a separate group shut Jaguar Land Rover down for six weeks last August. Three different attacker groups, same corporate parent. That pattern points to structural vulnerability across the group.”

World Leaks implicated in the Tata data leak

The World Leaks cybercrime gang, which operates on a double-extortion model and targets the manufacturing, technology, defense, retail, industrial, and enterprise sectors, has claimed responsibility for the Tata data leak.

“Breaches like this are incredibly important because they remind us what actually matters,” noted John Strand, Owner, Black Hills Information Security. “Too many organizations get so focused on checking compliance boxes that they lose sight of the intellectual property and the unique expertise that actually makes their business valuable. Attackers aren’t just after systems. They’re after the secret sauce that sets your organization apart.”

The group leaked the stolen Tata data after a failed extortion attempt. It was previously attributed to the Nike cyber attack, which reportedly leaked over 1.4 TB of data, including 190,000 corporate files.

World Leaks leverages social engineering, phishing, weak, stolen, and compromised passwords, unpatched vulnerabilities, supply chain attacks, exposed or weakly protected remote access tools, such as VPNs and RDPs, and initial access brokers to breach organizations.