The hacker who stole the data of millions of iPhone users has a list of other victims, including Apple Inc. and Sony Corp., according to the people familiar with the matter.

The list, which has been published online by a security company called Skribbl, does not include the company that initially developed the security bug, and is likely to have come from other hackers, the people said.

Apple has said the hack may have been discovered by an individual who was not affiliated with the company, and that Sony is working with investigators to determine the scope of the breach.

Apple said it has taken steps to address the breach and is working to get the device back online.

Sony said it was investigating the matter and has not yet announced any changes.

A hacker using the name “Tanya” stole more than a million personal data from a database of 1.3 million people.

The hack was first reported by the news website KrebsOnSecurity, which described it as “an ongoing and high-profile data compromise by a group of attackers who are believed to have been based in Russia.”

It was not immediately clear whether Tanya had been arrested.

Apple spokesman Josh Silverman said in a statement that the company is “committed to ensuring the security of our products and services and is aware of the recent report that an individual is responsible for the data breach.”

Apple has been investigating a separate hack that affected nearly 400,000 people, including more than 700,000 employees, in January.