Ingram Micro, a major distributor, is recovering from a ransomware attack carried out by the SafePay crew, which exploited security misconfigurations. The attack caused system outages, disrupted order processing, and led to the theft and encryption of sensitive data. #SafePay #IngramMicro #Ransomware #VPNExploit
Keypoints
- The ransomware attack on Ingram Micro caused significant disruption to its order processing systems.
- The SafePay gang claimed responsibility, citing network misconfigurations as the entry point.
- The attackers accessed and encrypted sensitive corporate and customer data, threatening publication.
- Ingram Micro is investigating whether GlobalProtect VPN was exploited to gain access.
- Experts advise organizations to strengthen remote access security with multi-factor authentication and IP controls.
Read More: https://www.theregister.com/2025/07/06/ingram_micro_confirms_ransomware_behind/