{"slug": "apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade", "title": "Apple claims OpenAI staff exploited network vulnerability to siphon trade secrets", "summary": "Apple filed a lawsuit alleging that former employee Chang Liu exploited a network vulnerability to steal trade secrets and share them with OpenAI, where he now works. The suit also names former Apple VP Tang Yew Tan, who allegedly encouraged Apple staff to bring confidential parts to OpenAI interviews. Apple claims OpenAI's hardware business is built on stolen intellectual property.", "body_md": "A former Apple employee is alleged to have used their access to the tech giant’s network and downloaded “dozens” of top secret hardware files, which they supplied to OpenAI.\n\nAccording to a [lawsuit](https://www.courthousenews.com/wp-content/uploads/2026/07/apple-OpenAI-complaint.pdf) filed on July 10, iPhone engineer Chang Liu departed Apple to join OpenAI’s fledgling hardware division. The suit alleges Liu accessed confidential Apple files including information on upcoming, unreleased projects, engineering presentations, and technical specifications.\n\nLiu allegedly kept an Apple-issued laptop that was still authenticated to the tech giant’s network, with the complaint contending he told former colleague Yu-Ting “Alyssa” Peng: “LOL, I found out I can access the [network storage], so funny.”\n\nThe lawsuit also claims Liu exploited a previously unknown authentication bug to access Apple’s shared network folders. Among the trove of documents allegedly accessed by Liu were a compilation of technical files with more than one thousand pages labeled as confidential.\n\nLiu is also alleged to have used Peng’s work computer while she was still employed at Apple and later tried to coach her to on how to access and copy files from Apple workstations “to avoid trouble with the security team.”\n\nOpenAI’s efforts to create its own hardware lines saw it enlist former Apple design chief Jony Ive [last May](https://openai.com/sam-and-jony/). A few months later, the ChatGPT maker acquired Ive’s design startup, io Products, which also is listed as a defendant in the lawsuit.\n\nApple has attacked those efforts, with its lawsuit claiming such misconduct is “normalized and exemplified by leadership.”\n\nLiu isn’t the only former Apple employee alleged to have misappropriated trade secrets, with the lawsuit also naming Tang Yew Tan as a defendant. Tan served at Apple for over two decades, most recently as VP for product design for iPhone and the Apple Watch, before recently jumping ship to become OpenAI’s chief hardware officer. According to the lawsuit, Tan's alleged to have told staff still working for Apple to bring “actual parts” to interviews with OpenAI for “show and tell” sessions.\n\n“OpenAI’s nascent hardware business now rests on the shakiest of foundations, rotten to its core by its illegal reliance on misappropriated trade secrets,” the iPhone maker wrote in its complaint.\n\nApple said its trade secrets and confidential company information are stored in its secure network file repository, which is a third-party hosted cloud system. Access at Apple is provisioned through the tech giant’s Access Manager system under Apple’s terms of use that limit access to only “for work purposes,” and that access to said system is disabled upon an employee’s departure.\n\nThe lawsuit alleges employees departing for OpenAI have “taken actions to evade security measures,” including failing to provide two weeks’ notice and ignoring outreach by security personnel to schedule exit processes and security reviews – all of which Apple said, “may help to conceal the misuse and misappropriation of confidential information.”\n\nApple’s lawsuit comes as device access is a security concern of growing importance, with trade secret misappropriation joining other fears like [shadow AI](https://www.sdxcentral.com/analysis/keeping-shadow-ai-from-the-enterprise-end-zone/). [Palo Alto Networks](https://www.sdxcentral.com/news/palo-alto-networks-opens-the-vault-to-unmanaged-devices-with-secure-agentless-access-launch/), [Cloudflare](https://www.sdxcentral.com/news/cloudflare-targets-ai-security-gaps-with-mesh-launch-wiz-integration/), and [Cato Networks](https://www.sdxcentral.com/news/cato-networks-launches-enterprise-browser-to-tackle-shadow-ai-threats/) are among the vendors to have launched device access services of late to meet enterprise demand for uniform enforcement without policy gaps or fragmented security workflows.", "url": "https://wpnews.pro/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade", "canonical_source": "https://www.sdxcentral.com/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade-secrets/", "published_at": "2026-07-13 12:34:00+00:00", "updated_at": "2026-07-13 12:39:02.222522+00:00", "lang": "en", "topics": ["ai-policy", "ai-ethics"], "entities": ["Apple", "OpenAI", "Chang Liu", "Tang Yew Tan", "Jony Ive", "io Products", "Palo Alto Networks", "Cloudflare"], "alternates": {"html": "https://wpnews.pro/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade", "markdown": "https://wpnews.pro/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade.md", "text": "https://wpnews.pro/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade.txt", "jsonld": "https://wpnews.pro/news/apple-claims-openai-staff-exploited-network-vulnerability-to-siphon-trade.jsonld"}}