Ingram Micro Ransomware Attack Exposes Sensitive Data

Ingram Micro, one of the world's largest IT distributors, has confirmed a major ransomware attack by the SafePay group began on July 3, 2025. The attack prompted Ingram Micro to take key systems offline globally, severely disrupting online ordering, software licensing, and customer service across the US, Europe, Asia, and potentially the Middle East and North Africa. SafePay claims it exploited security misconfigurations to steal sensitive data, including financial records, intellectual property, personal files, and customer information, and is demanding a ransom for decryption and non-disclosure. Ingram Micro has launched an investigation with cybersecurity experts, alerted law enforcement, and is working to restore its systems. The outage has caused significant frustration among partners and customers, and the company has apologized for the disruption. The incident underscores the growing risks to the global IT supply chain posed by ransomware groups.