Ingram Micro late Wednesday said that it has restored operations to all parts of the globe where it does business, following a ransomware attack that led to a multiday disruption.
The Irvine, Calif.-based technology firm said its teams are still working with customer and vendor partners to help support them following the disruption.
The company on Saturday confirmed it was investigating a ransomware attack that disrupted its ability to process orders. It operates a digital platform called Ingram Micro Xvantage, which provides customers with insights, order tracking, pricing and other information.
A cybercrime group dubbed SafePay has claimed responsibility for the attack, but it remains unclear how much data they stole and the number of customers the hack affected.
SafePay has transformed into one of the most active ransomware groups in the world and has been linked to more than 200 victims, according to researchers at Acronis.
The group, believed to have spun out of LockBit, has targeted managed service providers and a range of small- to medium-sized businesses across various sectors, according to Acronis.
Ingram Micro declared the incident contained on Tuesday and said it was continuing to investigate the scope of the impact. It filed an incident disclosure with the Securities and Exchange Commission on Monday.
The company has been working with law enforcement and third-party forensic experts on the investigation