Ingram Micro Restores Global Orders After Ransomware Attack

Ingram Micro, a major IT distributor, suffered a ransomware attack in early July 2025 that forced the company to take certain systems offline, causing widespread service disruptions including order processing and customer access to management portals. The ransomware gang SafePay, active since late 2024, has claimed responsibility for the breach, which led Ingram Micro to promptly secure its environment and implement mitigation measures while involving cybersecurity experts and law enforcement. The company has since made significant progress in restoring transactional business functions, with subscription orders and phone or email orders being processed in many countries, though some limitations on hardware and technology orders remain. Ingram Micro has apologized for the disruptions and is focused on fully restoring its services, clarifying order limitations as they arise. The attack highlights the vulnerability of key supply chain players to evolving ransomware threats and the operational impact such breaches can have on global technology distribution. Despite the disruption, Ingram Micro is confident in the security measures being implemented as systems gradually come back online.