The attackers that claim to have infected Ingram Micro’s sales and fulfilment systems with ransomware this month, are threatening to make public 3.5 terabytes of data they say they took, tomorrow, 1 August.
On 9 July, distributor Ingram claimed to have recovered from the attack globally, which started just before the 4 July holiday in the US.
The attack had crippled the company’s international commercial systems, with channel orders stuck in the system and reports that partner data had been stolen, including financial and transaction details.
Since the reported recovery, Ingram has not publicly confirmed what data was compromised, and whether it had paid any ransom to get back data.
The fact the alleged SafePay attackers are now declaring the data disclosure threat on their leak blog, may indicate Ingram paid nothing to them to unlock its systems.
Since the 1 August data disclosure threat was made, Ingram Micro has not publicly said anything.
