A staggering 42,000 individuals have been impacted by a ransomware attack on Ingram Micro, a leading IT distributor and service provider. This incident, which occurred in July 2025, has shed light on the growing threat of cybercrime and the potential consequences for businesses and individuals alike.
But here's the shocking part: the breach exposed a treasure trove of personal information, including Social Security numbers, employment records, and government-issued IDs. This sensitive data was stolen by an unauthorized third party, who infiltrated the company's internal systems and made off with the files. And this is just the tip of the iceberg.
Ingram Micro, a global powerhouse with over 23,500 employees and $48 billion in net sales, found itself in the crosshairs of a sophisticated cyberattack. The attackers didn't just steal data; they also deployed ransomware, causing a massive outage and forcing employees to work remotely. The company's systems and website were taken offline, leaving the organization scrambling to respond.
The cybercriminals responsible for this attack, known as the SafePay ransomware gang, have been making waves since their emergence in September 2024. They employ a ruthless double-extortion tactic, stealing sensitive data and then encrypting systems, demanding ransom payments to prevent the data from being leaked online. And they've been busy, adding hundreds of victims to their leak site.
But here's where it gets controversial: while Ingram Micro has confirmed the ransomware attack, they have yet to publicly acknowledge the involvement of the SafePay gang. This has sparked speculation and raised questions about the company's transparency and the true extent of the breach.
As the dust settles on this incident, the cybersecurity community is left with more questions than answers. Was this attack an isolated incident or part of a larger campaign? How can organizations better protect themselves against such sophisticated threats? And what steps should be taken to ensure the safety and privacy of individuals whose data has been compromised?
The 2026 CISO Budget Benchmark Report offers a glimpse into how security leaders are strategizing and investing to tackle these challenges. With insights from over 300 CISOs, the report provides a roadmap for navigating the evolving cybersecurity landscape. As we move into 2026, the battle against cybercrime continues, and the strategies employed by top leaders will be crucial in safeguarding our digital world.
