Tata Technologies, a leading provider of product engineering and research and development services, has fallen victim to a ransomware attack, resulting in the leak of sensitive data by the Hunters International ransomware group.

The leaked data, published on the gang's dark web leak site, includes personal details about current and former employees, as well as confidential information such as purchase orders and contracts with customers in India and the United States. The data set is reportedly massive, consisting of over 730,000 documents, including Excel spreadsheets, PowerPoint presentations, and PDF files, cumulatively totaling about 1.4 terabytes in size.

The ransomware attack was first disclosed by Tata Technologies in late January, when the company informed Indian stock exchanges that "a few of" its IT assets had been affected. At the time, Tata assured that its client services "remained fully functional and unaffected throughout." However, it is unclear whether the leaked data is related to the same attack, as representatives for Tata have not yet provided comment despite being reached multiple times.

Tata Technologies, founded in 1989 as an automotive unit of Tata Motors, has grown into a significant player in the industry, operating as a subsidiary of the Indian conglomerate Tata Group since 1994. The company provides services to automotive, aerospace equipment makers, and engineering companies across 27 countries, with 20 delivery centers and over 12,500 employees.

Hunters International, the ransomware-as-a-service group behind the attack, has been active since late 2023. The group leases out its infrastructure to affiliate hackers, who carry out ransomware attacks, and takes a cut of the proceeds from ransom payments. Notably, Hunters International has links with the Hive ransomware gang, which law enforcement agencies largely disrupted in 2023. The Hive gang had previously leaked data stolen from another Tata Group company, Tata Power, in 2022.

The incident highlights the growing threat of ransomware attacks, which can have devastating consequences for businesses and individuals alike. As the attack on Tata Technologies demonstrates, even large and established companies can fall victim to these types of attacks, resulting in the exposure of sensitive data and potential financial losses.

The leak of Tata Technologies' data also raises concerns about the security measures in place to protect sensitive information. As the company continues to navigate the aftermath of the attack, it is essential that it takes steps to address any vulnerabilities and ensure the integrity of its systems and data.

In the broader context, the attack on Tata Technologies serves as a reminder of the need for companies to prioritize cybersecurity and take proactive measures to protect against ransomware attacks. As the threat landscape continues to evolve, it is crucial that businesses remain vigilant and adapt to new tactics and techniques used by ransomware groups.

As the situation continues to unfold, TechCrunch will provide updates on any further developments or responses from Tata Technologies.