Ingram Micro, a leading IT firm, has confirmed that it has successfully restored all services impacted by a ransomware attack over the weekend. The disruption began on Friday, leading to numerous customer complaints about the inability to place orders or access management portals.
As the attack unfolded, Ingram Micro took immediate action to disconnect internal systems to prevent further damage. The organization communicated to its stakeholders, detailing a series of updates about its efforts to implement recovery and mitigation measures over the course of the weekend.
On Tuesday, the company proudly announced that the incident had been contained and remediated. “Ingram Micro is pleased to report that we are now operational across all countries and regions where we transact business,” the firm stated, underlining the scale of its recovery efforts.
The restoration process began on Monday, with the gradual revival of various systems in different regions. By Wednesday, Ingram Micro confirmed that all operations were back online. “Our teams are now able to process and ship orders received via EDI, or electronically, as well as by phone or email across all of our business regions,” the company elaborated, indicating a swift about-face from the disruptions.
The teams at Ingram Micro have been praised for their quick response abilities amid the stressful situation. “Our teams continue to perform at a swift pace to serve and support our customers and vendor partners. We are grateful for the support we’ve received from our customers and industry colleagues,” the firm added, highlighting the collaborative effort in overcoming the challenges posed by the attack.
While Ingram Micro has managed the immediate consequences of the incident, it has yet to disclose if any data was exfiltrated during the breach. The company is actively investigating the extent of the incident and is assessing for potentially compromised data.
According to reports, the SafePlay ransomware group is believed to be behind the attack. However, they have yet to make any statement regarding the incident, leaving lingering questions as to whether any data was stolen or if ransom demands were attempted against Ingram Micro.
When approached for further details about the attack, an Ingram Micro spokesperson refrained from commenting on the perpetrators. The atmosphere of uncertainty regarding the incident's broader implications continues as investigations proceed.
As the industry remains on guard, this incident serves as a reminder of the persistent threats facing technology firms globally. Vigilance and prompt action, as demonstrated by Ingram Micro in their recovery, are crucial in navigating the complex landscape of cyber threats today.
