January 19, 2026 By Pierluigi Paganini
Ingram Micro says a ransomware attack exposed personal data of about 42,000 people, including names, birth dates, SSNs, and job-related details.
Ingram Micro is a global technology distributor and supply-chain services company. It acts as a middleman between IT vendors (like Microsoft, Cisco, HP, Apple, and cybersecurity firms) and businesses, resellers, and service providers, helping them buy, sell, and deploy technology products and services worldwide.
The company detected a cyber incident on July 3, 2025 and launched an investigation with the help of cybersecurity experts. The company quickly contained the breach, in response to the incident took some systems offline to contain the threat. Ingram announced that it has applied security measures and notified law enforcement.
“On July 3, 2025, we detected a cybersecurity incident involving some of our internal systems. We quickly launched an investigation into the nature and scope of the issue. Based on our investigation, we determined that an unauthorized third party took certain files from some of our internal file repositories between July 2 and 3, 2025.” reads the data breach notification shared with Maine Attorney General’s Office. “We worked diligently to review the affected files to understand their contents. Through this review, we recently learned that some of the affected files include personal information about you.”