Global IT Distributor Ingram Micro Hit by Major Ransomware Attack Disrupting Operations Worldwide

Global technology firm Ingram Micro has disclosed a ransomware attack that compromised its internal systems on July 5, 2025. The California-based company, known for its vast distribution network serving nearly 90% of the world’s population, revealed the breach following detection of malicious encryption software on July 3.

The attack, attributed to the Safepay threat group—a rapidly emerging actor in the cybercrime ecosystem identified by security firm Check Point—has severely impacted Ingram Micro’s order processing and fulfillment operations. Customer-facing applications, including ecommerce and technical support tools, have been particularly affected, causing disruptions for thousands of B2B companies globally.

In response, Ingram Micro took immediate steps to secure affected systems by proactively taking certain environments offline. However, the full scope of the damage is still being assessed.

The breach has notably disrupted Ingram Micro’s flagship AI platform, Xvantage, which handles order tracking, billing automation, and inventory management. These operational challenges threaten significant financial losses and highlight the critical role cybersecurity plays in modern business continuity.

Ingram Micro serves thousands of B2B brands worldwide and reported $50 billion in revenue last year. The ransomware incident underscores the escalating cyber threats facing enterprises today, as reflected by recent major breaches such as the one impacting Qantas, potentially affecting up to six million customers.

Industry reports indicate that many organizations remain ill-prepared for sophisticated cyberattacks. A recent study found that 98% of senior leaders cannot identify all signs of phishing attacks, exposing critical vulnerabilities at all levels of business.

With artificial intelligence technologies advancing rapidly, the cybersecurity landscape is becoming increasingly complex. Experts warn that companies must invest heavily in employee upskilling, expand their IT talent pools, and enhance infrastructure defenses to mitigate growing risks.