On July 2–3, 2025, the SafePay ransomware group exfiltrated files from Ingram Micro’s internal repositories. Ingram Micro (a leading global IT distributor processing ~$15B in transactions annually) identified ransomware on certain systems on July 5 and suffered an approximately 48-hour operational outage disrupting global supply chain operations. SafePay listed Ingram Micro on its leak site claiming 3.5 TB of stolen data. Ingram Micro notified the Maine AG that 42,521 individuals were affected, with exposed data including names, dates of birth, Social Security numbers, passport numbers, driver’s license numbers, and employment-related information. Operations fully restored by July 9, 2025. SafePay emerged as a new ransomware group in late 2024.