A major cyberattack has hit Luxshare, a key Apple supplier based in China, and it has raised serious concerns across the tech industry. The attackers say they stole more than 1TB of confidential data, including files linked to Apple products, internal workflows, and people who worked on those projects. The breach appears to include material that covers several years of engineering and manufacturing work, which means even future products could be affected.
Cybernews reported that the ransomware group RansomHub took credit for the attack. The group posted on its dark website on December 15, 2025, saying it had gained access to Luxshare’s internal systems and copied large volumes of data. In its message, the group accused Luxshare of trying to hide the incident and warned that the files would be released unless the company made contact.
“We strongly recommend that you contact us to prevent your confidential data and project documents from being leaked,” the group wrote.
What the attackers say they stole
RansomHub claims the stolen data includes a wide range of technical and business material from Luxshare and its major clients. This reportedly covers Apple, Nvidia, LG, Tesla, and several others. According to the attackers, the files include:
- 3D CAD product models and geometric design files
- 2D manufacturing drawings and PCB layouts
- Internal engineering documents and PDFs
- Device repair guides and logistics workflows
- Shipping timelines and partner coordination records
The group also says the files date from 2019 through 2025. That timeline increases the risk that some of the data relates to products that Apple and others have not yet announced.
What researchers found in the leaked samples
Cybernews said its researchers reviewed sample files that RansomHub shared as proof of the breach. The team reported that the documents looked like real internal Luxshare files tied to Apple projects. These samples included detailed repair procedures, logistics plans, and step by step production workflows that show how Apple and Luxshare work together.
The samples also contained common design and manufacturing file types, such as .dwg and Gerber files, which engineers use to build and assemble hardware. Researchers said some of the files appeared to include personal information, including full names, job titles, and work email addresses of people involved in Apple-related projects.
Even if no future Apple products appear in the stolen data, the impact of this breach remains serious. With access to full design files and manufacturing details, criminals or competitors could copy hardware, create counterfeits, or skip years of research and development. The data also exposes how devices are built, where key components sit, and how power and chips interact.
That level of detail also creates cybersecurity risks. Attackers can study the layouts to look for weak points in hardware or firmware. They can also use leaked contact details and internal workflows to run targeted phishing attacks or plan further intrusions across Apple’s supply chain.
No public response yet
So far, neither Apple nor Luxshare has confirmed the attack. Luxshare plays a major role in making products such as the iPhone, Apple Watch, and AirPods. That link makes this breach more than a local problem. It turns into a supply chain issue that affects one of the world’s largest tech companies and its customers.
As more details surface, the industry will watch closely to see how much data gets released and how Apple and Luxshare respond. The scale of the claimed theft means the damage could last far beyond this single incident.
