Ingram Micro Holding Corp., a large distributor of technology products and services, has confirmed a ransomware attack that has disrupted key internal systems and impeded its ability to process and fulfill customer orders.
In a statement, the Irvine, California-based company disclosed it “recently identified ransomware on certain of its internal systems.” Upon discovery, Ingram Micro said it “took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures.” The company added it has launched a formal investigation with the help of “leading cybersecurity experts” and notified law enforcement authorities.
While Ingram Micro has not specified the date of the breach or the full extent of the impact, it acknowledged the attack has caused delays in operations. “Ingram Micro is working diligently to restore the affected systems so that it can process and ship orders,” the company said. “We apologize for any disruption this issue is causing our customers, vendor partners, and others.”
As of Tuesday morning, the company had not disclosed whether sensitive data, such as customer, vendor, or employee information, was compromised, or whether a ransom was demanded or paid. The investigation remains ongoing.
Founded in 1979, Ingram Micro was acquired by Platinum Equity in 2021 in a $7.2 billion deal. The company provides distribution, logistics, cloud services, and advanced supply chain solutions to technology vendors and resellers worldwide.
The attack on Ingram Micro comes amid a sharp rise in cyber incidents targeting critical infrastructure and technology firms. A 2024 global study by cybersecurity firm Sophos found that 63% of mid- and large-sized businesses experienced a ransomware attack in the previous year. Companies with complex supply chains were among the most frequently targeted, highlighting the growing risk to digital infrastructure in the tech distribution sector.
Ingram Micro said it will continue to provide updates as it progresses with recovery efforts.
Cyber-attacks are impacting more distributors across a variety of industries. On June 11, a cyberattack temporarily disrupted operations at United Natural Foods Inc. (UNFI), one of the largest food distributors in the United States and the primary supplier for Amazon.com Inc.’s Whole Foods Market.
The company disclosed in a U.S. Securities and Exchange Commission filing that it detected “unauthorized activity” in parts of its IT systems on June 5 and responded by enacting its incident response plan. UNFI took certain systems offline as a containment measure, which temporarily hindered its ability to fulfill and ship customer orders, the company said.
Don’t miss any content from Distribution Strategy Group. Join our list.
