Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

Julia Talevski
by
Editor ARN | Reseller News

Ingram Micro confirms ransomware incident

News
6 Jul 20252 mins
SecurityVendors and Providers

The company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures.

Ingram Micro Headquarters 16:9
Credit: Ingram Micro

Ingram Micro has confirmed it recently identified ransomware on certain internal systems that resulted in a global IT shutdown during the past couple of days.

In a statement Ingram Micro said promptly after learning of the issue, the company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures.

The distributor said it also launched an investigation with the assistance of leading cyber security experts and notified law enforcement.

“Ingram Micro is working diligently to restore the affected systems so that it can process and ship orders, and the Company apologises for any disruption this issue is causing its customers, vendor partners, and others,” Ingram Micro said.

Ingram Micro’s websites now redirect partners to the cyber incident message with all websites remaining offline at the time of publication on 7 July.

Ingram Micro has been contacted for commentary.

Partners have received communication from Ingram Micro on the incident, further stating that while the investigation continues, “we are focused on bringing normal order processing capabilities back online for our customers.”

“At the same time, our team is working diligently to restore the affected systems. We thank you for your patience as work progresses. We will keep you informed with relevant updates as appropriate.”

The disruption, which began on July 3 as users on Reddit began voicing concerns and speculating on possible causes, including a ransomware attack from SafePay, which has been active since 2024 with more than 220 victims and rising.

According to a report on BleepingComputer the outages were caused by a cyberattack that occurred early Thursday morning through the company’s GlobalProtect VPN access, with employees suddenly finding ransom notes created on their devices.

Systems that are impacted include the AI-powered Xvantage distribution platform and the Impulse license provisioning platform. 

More to follow.

Julia Talevski
by
Editor ARN | Reseller News

With years of experience covering the latest technology trends and business news across the IT channel, Julia Talevski has been keeping the IT industry connected in Australia and New Zealand. She is currently the editor for ARN and Reseller News, responsible for keeping the community engaged at every touch point through our newsletters, websites and main events such as EDGE, WIICTA and Innovation Awards.

More from this author

Show me more

news

Australian Data Centres appoints ex-Microsoft Mark Pont for expansion push

By Sasha Karen
2 mins
Business OperationsCareersData Center
Image
news

Ingram Micro threatened with ransomware by Safepay gang

By Howard Solomon
2 mins
Security
Image
news

EDGE 2025: Don’t become a ‘culture terrorist’ during M&A

By Sasha Karen
6 mins
Business OperationsIT LeadershipMergers and Acquisitions
Image