NextFin News - Federal authorities in San Jose, California, have unsealed a major indictment against three Silicon Valley engineers accused of a sophisticated conspiracy to steal proprietary semiconductor technology from Google and other leading tech firms. According to the U.S. Attorney’s Office for the Northern District of California, the defendants—Samaneh Ghandali, 41; her sister, Soroor Ghandali, 32; and Samaneh’s husband, Mohammadjavad Khosravi, 40—allegedly orchestrated the theft of trade secrets related to advanced mobile processor security and cryptography, with evidence suggesting the data was transferred to Iran. The trio, all Iranian nationals residing in San Jose, made their initial court appearances on February 19, 2026, facing multiple counts of conspiracy, theft of trade secrets, and obstruction of justice.
The investigation, spearheaded by the FBI after a referral from Google, details a breach that began as early as August 2023. Prosecutors allege that Samaneh and Soroor Ghandali utilized their positions at Google to access hundreds of confidential files concerning system-on-chip (SoC) platforms—the hardware engines that power modern smartphones. Khosravi, working at a separate semiconductor firm, allegedly participated in the scheme by accessing proprietary information from his own employer. The indictment claims the group bypassed digital monitoring by photographing computer screens and using third-party communication platforms to organize the stolen data into folders labeled with their own names. In one instance, Samaneh Ghandali allegedly took 24 images of Khosravi’s work screen just hours before a December 2023 trip to Iran, where the data was subsequently accessed.
This case represents a significant escalation in the ongoing battle over global semiconductor intellectual property (IP). The technical nature of the stolen data—specifically SoC security and cryptography—is of immense strategic value. In the current geopolitical climate, where U.S. President Trump has prioritized the protection of American technological dominance through strict export controls and national security mandates, the loss of such 'blueprints' to a foreign adversary is viewed not just as corporate theft, but as a threat to national infrastructure. The use of 'analog' theft methods, such as screen photography, highlights a critical flaw in modern cybersecurity: while Google’s internal systems eventually flagged unusual activity, they were unable to prevent the physical capture of data that never technically 'left' the network via a file transfer.
From an industry perspective, the economic impact of such breaches is staggering. The semiconductor industry spends billions annually on R&D; for a competitor or a state-backed entity to acquire SoC security protocols for the cost of a few digital photos creates an asymmetric disadvantage. According to data from the Commission on the Theft of American Intellectual Property, IP theft costs the U.S. economy upwards of $600 billion annually, with the tech sector bearing the brunt. This specific indictment suggests that even the most advanced 'zero-trust' architectures used by firms like Google are vulnerable to insider threats who understand the limits of digital logging. The fact that Ghandali allegedly signed a false affidavit claiming no data was shared further illustrates the difficulty of relying on administrative compliance in high-stakes environments.
The legal repercussions for the defendants are severe, with each trade secret charge carrying up to 10 years in prison and the obstruction charge carrying up to 20 years. However, the broader impact will be felt in how Silicon Valley manages its workforce. We are likely to see a transition toward more intrusive 'physical-digital' monitoring. This could include the mandatory use of privacy screens that prevent off-angle photography, AI-driven camera detection in sensitive work zones, and more rigorous vetting of employees with access to 'crown jewel' IP. Under the administration of U.S. President Trump, the Department of Justice has signaled a 'no-tolerance' approach to tech transfers to sanctioned nations, suggesting that this indictment is the first of many as federal agencies increase their presence within the Valley’s R&D hubs.
Looking forward, the semiconductor industry must prepare for a 'fortress' model of IP protection. As SoC technology becomes the foundation for everything from AI to autonomous defense systems, the definition of a 'trade secret' is merging with 'classified intelligence.' Companies will likely face increased pressure from the federal government to implement standardized security protocols that go beyond two-factor authentication. The Ghandali case serves as a definitive warning: in the race for hardware supremacy, the greatest vulnerability is no longer the hacker outside the firewall, but the engineer with a smartphone standing in front of the screen.
Explore more exclusive insights at nextfin.ai.
