Ingram Micro reported that a July 2025 ransomware attack affected 42,521 employees and job applicants, exposing personal and employment-related data. The attack, claimed by the group SafePay, led to significant operational disruptions and customer dissatisfaction due to poor communication.

Ingram Micro is experiencing significant outages due to a ransomware attack attributed to the SafePay group, which has compromised internal systems and led to the shutdown of their online services. The attack is believed to have been initiated through compromised credentials used to access the company's GlobalProtect VPN, though Ingram Micro has not publicly confirmed the full extent of the attack. As of now, the company is working to restore affected systems and has begun processing certain orders again.

Ingram Micro is facing a ransomware threat from the SafePay group, which has announced a deadline of August 1 to leak 3.5 TB of the company's data after a cyber attack nearly a month prior. Despite claims of restored operations, some of Ingram Micro's websites are still being brought back online, indicating ongoing challenges from the incident.