Massive Data Breach: 1 Terabyte of Apple Data Leaked in Luxshare RansomHub Cyberattack

Major Cyberattack Hits Apple Supply Partner Luxshare

Luxshare, a key Apple supply partner, fell victim to a significant cyberattack in December, exposing sensitive data of numerous customers. Reports from Cybernews reveal that the breach resulted in the theft of over 1 TB of confidential Apple information from Luxshare’s systems.

The cyberattack was brought to light on December 15, 2025, by the ransomware group RansomHub. The group claimed to have infiltrated Luxshare’s internal systems, obtaining extensive amounts of top-secret data belonging to the company and its prominent clients. Threatening to make the information public, RansomHub accused Luxshare executives of attempting to conceal the incident rather than engage in negotiations.

Known for its ransomware-as-a-service (RaaS) operations, RansomHub primarily targets industrial manufacturing and healthcare sectors. The group’s actions have raised concerns about data security across various industries.

What Information Was Compromised?

Cybernews researchers verified the authenticity of the leaked data, which includes highly confidential Luxshare documents related to Apple projects spanning from 2019 to 2025. As Luxshare is responsible for assembling popular Apple products like the iPhone, AirPods, and Apple Watch, the breach likely contains sensitive details about unreleased products.

The stolen data encompasses a variety of information, such as:

• Technical Designs: 3D CAD product models, precise geometric files (Parasolid), and 2D manufacturing drawings.
• Engineering Data: Circuit board layouts, electrical architecture, and internal engineering PDFs.
• Logistics: Confidential repair procedures and internal workflow details between Apple and Luxshare.
• Personnel Data: Full names, job titles, and work email addresses of employees involved in the projects.

In addition to Apple’s confidential data, RansomHub claims to have acquired sensitive information from other tech giants like Nvidia, LG, Tesla, and Geely.

Implications Beyond Product Leaks

While speculation about leaked product specifications may surface, the cyberattack poses more severe risks. The exposure of contact details and internal processes could make Apple employees and production partners vulnerable to targeted phishing and social engineering attacks.

In a daring move, the attackers challenged Luxshare’s leadership on the dark web, alleging that they had offered ample time for negotiation before resorting to threats:

“We were waiting for you for quite some time, but it seems that your IT department decided to conceal the incident that took place in your company. We strongly recommend that you contact us to prevent your confidential data and project documents from being leaked.”

While Apple and Luxshare have not officially addressed the breach, it is evident that the cybercriminals have dealt a significant blow to Apple’s global supply chain security and confidentiality. The full repercussions of this attack may unfold over an extended period.