Ingram Micro Confirms Data Breach of 42,000 Following Ransomware Attack
TL;DR
Ingram Micro, a tech company, suffered a ransomware attack exposing the data of 42,521 individuals. The confirmation came through an official notification released in Maine, USA.
Ingram Micro, a technology company, suffered a ransomware attack that exposed the data of 42,521 individuals. The confirmation occurred in an official notification from the company, released in the state of Maine, USA.
The cybercriminals from the Safepay group made for sale a volume of 3.5 TB of potentially stolen data. Subsequently, this data was made available for free, indicating that the company may not have made the ransom payment requested.
Details on the Attack Against Ingram Micro
Ingram Micro reported that it detected a "cybersecurity incident" between July 2 and 3, 2025. Initially, the company believed that the attack only resulted in the downtime of some servers.
- The internal investigation revealed that "unauthorized third parties" collected files from the company's repositories. The restoration of services took about six days;
- The stolen data includes personal records of employees and job candidates at the company, but the countries affected have not been disclosed;
- Among the information in the possession of the cybercriminals are names, dates of birth, personal identification numbers (such as passports, Social Security, and driver's licenses), employment information, and contact details;
- Ingram Micro has taken steps to close access to its servers and offers credit monitoring and identity protection to the victims for a period of 24 months.
Context of Ransomware Attacks
A study conducted in 2025 revealed that, despite the decline in ransomware attacks and the amount demanded as a ransom, the data recovery rate remains constant. This highlights the need for improvements in security teams' responses.
The increase in attacks like the one against Ingram Micro demonstrates the growing importance of cybersecurity, both for large companies and ordinary users who may be directly affected by these incidents.
Future Implications of Cybersecurity
The incident at Ingram Micro highlights not only the vulnerability of companies to cyberattacks but also underscores the necessity for effective data response and recovery strategies. With the constant advancement of technology, strengthening security measures must be a priority.
Content selected and edited with AI assistance. Original sources referenced above.
