**Ransomware Attack on Ingram Micro Exposes Personal Data of 42,000 Individuals**

A devastating ransomware attack has compromised the personal data of approximately 42,000 people, including names, birth dates, Social Security numbers, and job-related details. The attack targeted Ingram Micro, a global technology distributor and supply-chain services company that acts as a middleman between IT vendors and businesses worldwide.

**Ingram Micro's Response to the Incident**

The company detected the cyber incident on July 3, 2025, and quickly launched an investigation with the help of cybersecurity experts. In response to the breach, Ingram Micro took some systems offline to contain the threat, and subsequently restored the affected systems within about a week. Global operations were fully resumed by July 9.

**Scope of the Breach**

According to the data breach notification shared with the Maine Attorney General's Office, an unauthorized third party stole files from internal systems between July 2 and 3, 2025. The stolen files include employment and job applicant records that contain sensitive personal information such as:

* Name * Contact information * Date of birth * Government-issued identification numbers (e.g., Social Security, driver's license, and passport numbers) * Certain employment-related information (e.g., work-related evaluations)

**Notification and Support for Affected Individuals**

Ingram Micro has notified law enforcement and applied additional security measures to prevent future breaches. The company is also offering affected individuals two years of free credit monitoring and identity protection services.

**The Ransomware Group Behind the Attack**

While Ingram Micro did not name the cybercrime group behind the security breach, the Safepay ransomware group claimed responsibility for the attack. The group added the company to its Tor leak site and claimed the theft of 3.5 TB (terabytes) of sensitive data, which was later published, suggesting a failed negotiation.

**What This Means for Affected Individuals**

Individuals whose personal information has been compromised should remain vigilant and take steps to protect themselves from potential identity theft and cyber attacks. By offering two years of free credit monitoring and identity protection services, Ingram Micro is taking proactive measures to support those affected by the breach.

Stay informed about the latest cybersecurity news and developments by following me on Twitter: @securityaffairs and Facebook and Mastodon.