
Ingram Micro responds to ransomware incident impacting internal systems
"Ingram Micro recently identified ransomware on certain of its internal systems," the company said in a statement issued on 5 July. "Promptly after learning of the issue, the Company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures. The Company also launched an investigation with the assistance of leading cybersecurity experts and notified law enforcement."
The company is currently focused on restoring affected systems and minimising disruption to business operations. "Ingram Micro is working diligently to restore the affected systems so that it can process and ship orders, and the Company apologises for any disruption this issue is causing its customers, vendor partners, and others," the statement read.
Expert voices warn on supply chain risks
Industry experts have highlighted the growing risks associated with third-party access in the wake of the attack. Gareth Roberts, Head of Delivery at tmc3, a Qodea company, said: "It is crucial to remember that organisations are only as secure as their weakest link. Therefore, assessing the security practices of third-party suppliers and ensuring that data protection standards are being upheld is vital to a company's security posture."
Roberts underscored the importance of communication and transparency throughout the supply chain, noting that technical safeguards also play a key role in preventing such incidents. "To further protect information, businesses can implement specific technical measures such as strong encryption for data both in transit and at rest, which makes it unreadable to unauthorised users. Additionally, enforcing access controls and multi-factor authentication (MFA) helps ensure that sensitive data is only accessible to those who require it," he advised.
Alleged threat actor and industry context
The ransomware incident at Ingram Micro has reportedly been linked to a group known as SafePay, which allegedly accessed the company's systems via a compromised virtual private network (VPN). Jim Routh, Chief Trust Officer at Saviynt, commented: "The attack on Ingram Micro allegedly by SafePay is another example of the preference for threat actors to use compromised credentials to penetrate proprietary systems, in this case, gaining access to the virtual private network of Ingram Micro. Enterprises have an opportunity to improve their identity security capabilities to resist these types of attacks in the future."
Chris Hauk, Consumer Privacy Champion at Pixel Privacy, provided further context regarding the threat landscape. "With the toppling of LockBit and ALPHV, this has opened up 'opportunities' for upstart ransomware groups like SafePay. The group first gained fame with an early high-profile SafePay ransomware attack on UK telematics business Microlise, with SafePay claiming to have stolen 1.2 terabytes of data and demanding payment in less than 24 hours. However, little remains known about the group," Hauk noted.
Hauk added: "The reports I've seen indicate the group moves quickly, with fast encryption times, seeing attacks typically move from system breach to deployment in less than 24 hours."
He emphasised that organisations can protect against similar threats by implementing a series of robust security measures. "Organisations can protect against SafePay and similar types of ransomware attacks by placing strict access controls on their systems, strong authentication like multi-factor authentication, monitoring for newly discovered vulnerabilities, and implementing secure VPN connections to provide remote access," Hauk said.
Ongoing investigation and mitigation efforts
Ingram Micro's statement did not specify the extent of the disruption or when full system restoration is expected. The company has engaged leading cybersecurity experts to support its investigation and has notified relevant law enforcement authorities. The company also apologised for any inconvenience experienced by its customers and partners as a result of the incident.
As the investigation continues, Ingram Micro's experience underscores the persistent threat posed by ransomware and highlights the critical importance of vigilance, secure access management, and strong supply chain security practices within the IT sector.

Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles


Techday NZ
20 hours ago
- Techday NZ
Wise urges New Zealand MPs to end NZD $667m FX fee losses
Wise has urged Parliament to address what it describes as misleading bank fees on foreign transactions, claiming these are costing New Zealanders hundreds of millions of New Zealand dollars each year. The call was made as part of Wise's submission to Parliament's Finance and Expenditure Select Committee on the Financial Markets Conduct Amendment Bill 2025, which is currently under consideration. Wise contends that changes are needed to protect both consumers and businesses who are affected each time a currency conversion takes place, whether through sending money overseas, shopping online, travelling abroad, or operating businesses internationally. Hidden costs Research commissioned by Wise from Edgar, Dunn & Company indicated that New Zealanders lost a total of NZD $667 million to hidden foreign exchange (FX) payment fees in 2023. According to projections, this figure is set to increase to NZD $991 million by 2029 if current practices continue. Wise argues that these losses are primarily due to banks advertising "fee-free" international transactions while actual costs are concealed via inflated exchange rates. Tristan Dakin, Country Manager ANZ at Wise, stated: "New Zealanders think they're getting a good deal because they see 'no fees' or 'zero commission'. But the real cost is hidden in the exchange rate mark-up, which can be vastly different to the rate you find on Google. By ensuring more transparency, parliament can put millions back into the wallets of consumers, while removing barriers for small businesses that want to expand internationally." Regulatory context New Zealand currently has no specific legal requirements in place to tackle the problem of hidden FX costs in cross-border banking and payments. However, Wise's submission follows growing discussions in both local and international contexts about the need to enhance competition and transparency. Last year, the New Zealand Commerce Commission noted there "appears to be room to improve competition" in this area, and the G20 is already working towards making international payments more affordable, faster, and more transparent worldwide. Dakin also commented: "What the banks are doing right now is unfair, misleading, and is somehow perfectly legal. That needs to change, or they will continue to take an unfair share from Kiwi consumers and businesses. With the Financial Markets Conduct Amendment Bill 2025 and the growing international calls for reform, it's only a matter of time before governments all around the world take action on misleading FX fees." He added: "New Zealand has an incredible opportunity to set an example for the rest of the world. These proposed reforms offer a practical, low-cost solution that would help Kiwis make better choices and save money, while driving competition and innovation in the space." Proposed measures Wise's submission recommends several changes be included in the Bill. First, they suggest that all banks and financial service providers should be required to display the full cost of a transfer upfront, showing both fixed fees and exchange rate mark-ups. Wise also calls for a ban on advertising that implies transfers are "fee-free" when costs are actually embedded in the exchange rate. It believes that standardising how prices are displayed would make it easier for consumers and businesses to compare service providers effectively, and that key terms like "mid-market exchange rate" should be clearly defined to maintain consistency across the sector. The G20 has also cited the importance of enhancing cross-border payments, arguing that faster, cheaper, more transparent and more inclusive services would benefit citizens and economies worldwide by supporting economic growth, trade, development, and financial inclusion. Wise referenced this international perspective to highlight the relevance of its recommendations in the New Zealand context. Committee consideration The Financial Markets Conduct Amendment Bill 2025 remains before the Finance and Expenditure Select Committee, which is expected to report later in the year. Wise, supported by the data from its commissioned research, is urging policymakers to act in order to address what it sees as a lack of transparency and competition in cross-border payments. The company's submission is part of a wider movement across several jurisdictions to regulate and clarify the costs of international money transfers and currency exchanges, amid projections of growing sums lost to hidden fees in the years ahead.


Scoop
a day ago
- Scoop
Wise Urges Parliament To Act On Misleading Foreign Transaction Fees That Cost Kiwis Hundreds Of Millions Each Year
As the Financial Markets Conduct Amendment Bill 2025 moves through parliament, Wise highlights the full scale of the problem to MPs Wellington: Wise is calling for more transparency and fairness on foreign transactions, as New Zealand consumers and businesses continue to be ripped off by hidden fees. In a submission to Parliament's Finance and Expenditure Select Committee on the Financial Markets Conduct Amendment Bill 2025, Wise explains how banks claim to provide 'fee-free' cross currency services while hiding true costs behind inflated transfer rates. According to research by Edgar, Dunn & Company, commissioned by Wise, New Zealand consumers lost a total of NZD 667 million due to hidden FX payment fees in 2023, with this figure projected to increase to NZD 991 million by 2029.1 Tristan Dakin, Country Manager ANZ at Wise says: 'New Zealanders think they're getting a good deal because they see 'no fees' or 'zero commission'. But the real cost is hidden in the exchange rate mark-up, which can be vastly different to the rate you find on Google. By ensuring more transparency, parliament can put millions back into the wallets of consumers, while removing barriers for small businesses that want to expand internationally.' Growing push to tackle hidden FX While there are no current laws in place in New Zealand to address the issue, momentum for change is growing. Last year, the NZ Commerce Commission said there 'appears to be room to improve competition' in the space. And internationally, the G20 is acting on its roadmap for making international payments cheaper, faster, and more transparent. Dakin adds: 'What the banks are doing right now is unfair, misleading, and is somehow perfectly legal. That needs to change, or they will continue to take an unfair share from Kiwi consumers and businesses. With the Financial Markets Conduct Amendment Bill 2025 and the growing international calls for reform, it's only a matter of time before governments all around the world take action on misleading FX fees. New Zealand has an incredible opportunity to set an example for the rest of the world. These proposed reforms offer a practical, low-cost solution that would help Kiwis make better choices and save money, while driving competition and innovation in the space', says Dakin. The Bill is currently before Parliament's Finance and Expenditure Committee which is due to report on 19 October. Wise is calling for the following changes: Require banks and financial service providers to show the full cost of a transfer upfront, including both fixed fees and exchange rate markups. Ban advertising that claims transfers are 'fee-free' when a fee is hidden in the exchange rate. Standardise how pricing is shown, so people can compare providers easily. Define key terms like 'mid-market exchange rate' to ensure consistency. 1 The 2023 hidden fee data from Edgar, Dunn, and Company (EDC) were calculated based on the exchange rate margin offered by the largest banks in New Zealand when their customers move money from the country. Fee data from 2024 to 2029 are projected based on expected GDP growth of New Zealand. About Wise: Wise is a global technology company, building the best way to move and manage the world's money. Wise has more than 400,000 active New Zealand customers. With Wise Account and Wise Business, people and businesses can hold 40 currencies, move money between countries and spend money abroad. Large companies and banks use Wise technology too; an entirely new network for the world's money. One of the world's fastest growing, profitable tech companies, Wise launched in 2011 and is listed on the London Stock Exchange under the ticker, WISE. In fiscal year 2025, Wise supported around 14.8 million personal customers and 700,000 business customers, processing approximately £145.2 billion in cross-border transactions, and saving customers an estimated £2 billion.


NZ Herald
14-07-2025
- NZ Herald
Sunair says passenger services grounded for 10 days by Civil Aviation Authority
He said the Civil Aviation Authority (CAA) had some issues with record-keeping. He said the relevant details were basically deemed not to have been recorded the way the authority wanted. The airline's certificate of airworthiness was revoked. 'Effectively in layman's terms, it's the WoF [Warrant of Fitness],' Roberts said. He understood the ban was for 10 consecutive days, finishing on Sunday. Sunair operated five Piper PA-23 Aztec and three Cessna 172 aircraft. The Aztec is a twin-engine, six-seater and the 172 is a single-engine, four-seater. Roberts said the CAA advised Sunair to have 'more robustness and rigour' with the relevant record-keeping. He said Sunair was working with the authority. 'They've been incredibly helpful. It's not a combative environment.' Sunair had charter flights, scheduled passenger services and flight training services, Roberts said. It flies to Aotea/Great Barrier Island, Gisborne, Hamilton, Kaitāia, Napier, Tauranga, Wairoa, Whakatāne and Whitianga. 'We're still able to provide a significant number of services, albeit with another operator in the interim,' Roberts said today. 'Most of our services are concentrated around Northland, Waikato, Bay of Plenty and the East Coast.' Air Gisborne was operating some of those services. Aotea/Great Barrier Island is one of Sunair's destinations. Photo / Chris Morton The CAA today said it was responding to aviation-related concerns regarding Sunair. 'These concerns relate to maintenance and safety of their aircraft,' a CAA spokesperson said. 'The director of Civil Aviation has suspended the airworthiness certificates for aircraft operated by Sunair Aviation Ltd for safety reasons while we address these concerns.' They said Sunair normally operated under Civil Aviation Rules Part 119 and under Part 135, which related to commercial helicopters or small aeroplane operations. 'We are working with Sunair Aviation Ltd to address the safety concerns, which will help inform our next steps.' Aviation Industry Association chief executive Simon Wallace said: 'It's in everyone's best interests that they get flying again once these matters have been resolved'. In late 2017, the CAA grounded the airline and Sunair updated maintenance records and completed some remedial maintenance activities. More recently, several regional airlines have described facing multiple pressures. Air Chathams in April considered withdrawing its Whakatāne to Auckland route after losing more than $1 million in two years Sounds Air chief executive Andrew Crawford told RNZ his airline had to ditch its Taupō and Westport routes and sell an aircraft. But Roberts said he did not feel his regional airline was being picked on. 'There are various levels of operating certificates. You've got the major airlines and then you've got the next level down, like Sounds Air, and then you've got ourselves. 'The demands are appropriate for our levels.' John Weekes is a business journalist mostly covering aviation and courts. He has previously covered consumer affairs, crime, politics and courts.