IT distributor giant Ingram Micro has confirmed over the weekend that a ransomware attack was responsible for a widespread outage over its services.
One of the largest distributors of IT products and services, Ingram Micro was forced to take certain systems offline on Friday afternoon, in response to the incident.
This caused widespread outages across the company’s services, preventing customers from accessing management portals or placing orders, according to multiple Reddit posts.
On Saturday, the tech giant confirmed that the outage was caused by ransomware, saying it was scrambling to restore the affected systems and services.
“Ingram Micro recently identified ransomware on certain of its internal systems. Promptly after learning of the issue, the company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures,” the company said.
“Ingram Micro is working diligently to restore the affected systems so that it can process and ship orders, and the company apologizes for any disruption this issue is causing its customers, vendor partners, and others,” the giant continued.
Ingram Micro did not say how the intrusion occurred or whether any data was stolen from its systems. SecurityWeek has emailed the company for additional information and will update this article if a reply arrives.
While the company did not name the attackers, the SafePay ransomware group reportedly claimed the incident and the theft of data from Ingram Micro’s systems.
SafePay has been one of the most active ransomware gangs this year, claiming over 220 victims since starting operations in November 2024.
Related: Chain IQ, UBS Data Stolen in Ransomware Attack
Related: Krispy Kreme Confirms Data Breach After Ransomware Attack
Related: Anubis Ransomware Packs a Wiper to Permanently Delete Files
