INGM files 8-K on ransomware attack, works to restore order processing

Rhea-AI Filing Summary

Ingram Micro Holding Corporation (NYSE: INGM) has filed a Form 8-K to disclose a ransomware incident affecting certain internal systems. The company detected the malware on 5 July 2025, immediately isolated impacted environments by taking some systems offline, and engaged leading cybersecurity experts to assist in investigation and remediation. Law-enforcement authorities have also been notified. A press release with additional details is attached as Exhibit 99.1.

The company states it is “working diligently to restore the affected systems so that it can process and ship orders,” indicating that normal order-processing activities are currently constrained. No further information regarding scope of data exposure, duration of disruption, or potential financial impact is provided in the filing. Forward-looking-statement language cautions investors that actual outcomes may differ materially from current expectations and directs readers to the Risk Factors sections of the company’s periodic reports.

Key takeaways for investors:

• The cyberattack constitutes a material event under Item 8.01 (Other Events) and could temporarily impair operations.
• Management responded quickly, implemented mitigation measures, and involved third-party cybersecurity specialists.
• Financial impact, customer data exposure, and timeline for full restoration are not yet disclosed.

Positive

• Prompt containment actions — systems taken offline quickly and cybersecurity experts engaged
• Law-enforcement notification demonstrates regulatory compliance and proactive cooperation

Negative

• Ransomware attack disclosed indicates potential operational disruption and cyber-security weaknesses
• Order processing impacted while affected systems are offline, which could hurt short-term revenue

Insights

Cybersecurity Risk Analyst

TL;DR: Ransomware adds operational and reputational risk; response swift but impact unknown.

The 8-K confirms a ransomware intrusion in Ingram Micro’s internal systems, categorised as a material event. Immediate containment—taking systems offline and hiring external experts—aligns with best practice, potentially limiting propagation. However, order processing is disrupted, signalling near-term revenue friction and customer-service strain. Absence of disclosure on data exfiltration or insurance coverage heightens uncertainty over remediation costs, legal liabilities, and regulatory scrutiny. Until the company quantifies downtime and recovery progress, the incident is likely negative for operational continuity and stakeholder confidence.

Equity Analyst

TL;DR: Event is modestly negative; magnitude depends on duration of system outage.

Ingram Micro’s rapid disclosure limits speculation, but order-fulfilment delays can immediately pressure Q3 revenue if outages persist. The company’s global distribution model relies on high-velocity logistics, so even short interruptions can deflate gross profit margins. The lack of quantified financial impact preserves earnings-per-share estimates for now, yet investors should prepare for potential one-time expenses (forensics, overtime, potential customer concessions) to surface in upcoming quarters. Given management’s swift action, worst-case tail risks may be contained, but the filing still warrants a negative bias until restoration status is clarified.

8-K Event Classification

2 items: 8.01, 9.01

2 items

Item 8.01 Other Events Other

Voluntary disclosure of events the company deems important to shareholders but not covered by other items.

Item 9.01 Financial Statements and Exhibits Exhibits

Financial statements, pro forma financial information, and exhibit attachments filed with this report.

Understanding 8-K Material Events →

FALSE000189776200018977622025-07-052025-07-05

UNITED STATES

SECURITIES AND EXCHANGE COMMISSION

Washington, D.C. 20549

__________________________

FORM 8-K

__________________________

CURRENT REPORT

Pursuant to Section 13 or 15(d)

of the Securities Exchange Act of 1934

Date of Report (Date of Earliest Event Reported): July 5, 2025

__________________________

INGRAM MICRO HOLDING CORPORATION

(Exact Name of Registrant as Specified in its Charter)

__________________________

Delaware			001-42384			86-2249729
(State or other jurisdiction of incorporation)			(Commission File Number)			(I.R.S. Employer Identification Number)

3351 Michelson Drive, Suite 100, Irvine, CA 92612

(Address of Principal Executive Offices) (Zip Code)

Registrant’s telephone number, including area code: (714) 566-1000

__________________________

Check the appropriate box below if the Form 8-K filing is intended to simultaneously satisfy the filing obligation of the registrant under any of the following provisions:

o			Written communications pursuant to Rule 425 under the Securities Act (17 CFR 230.425)
o			Soliciting material pursuant to Rule 14a-12 under the Exchange Act (17 CFR 240.14a-12)
o			Pre-commencement communications pursuant to Rule 14d-2(b) under the Exchange Act (17 CFR 240.14d-2(b))
o			Pre-commencement communications pursuant to Rule 13e-4(c) under the Exchange Act (17 CFR 240.13e-4(c))

Securities registered pursuant to Section 12(b) of the Act:

Title of each class

Trading Symbol(s)

Name of each exchange on which registered

Common Stock, $0.01 Par Value

INGM

New York Stock Exchange

Indicate by check mark whether the registrant is an emerging growth company as defined in Rule 405 of the Securities Act of 1933 (§230.405 of this chapter) or Rule 12b-2 of the Securities Exchange Act of 1934 (§240.12b-2 of this chapter).

Emerging growth company o

If an emerging growth company, indicate by check mark if the registrant has elected not to use the extended transition period for complying with any new or revised financial accounting standards provided pursuant to Section 13(a) of the Exchange Act. o

Item 8.01.        Other Events.

On July 5, 2025, Ingram Micro Holding Corporation (the “Company”) issued a press release stating the Company identified ransomware on certain of its internal systems. Promptly after learning of the issue, the Company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures. The Company also launched an investigation with the assistance of leading cybersecurity experts and notified law enforcement.

A copy of the press release is attached hereto as Exhibit 99.1, noting that the Company is working diligently to restore the affected systems so that it can process and ship orders.

Safe Harbor Statement

This Current Report on Form 8-K contains “forward-looking statements” within the meaning of Section 27A of the Securities Act of 1933, as amended, Section 21E of the Securities Exchange Act of 1934, as amended, and the Private Securities Litigation Reform Act of 1995. You can identify forward-looking statements because they contain words such as “believes,” “expects,” “may,” “will,” “should,” “seeks,” “intends,” “plans,” “estimates,” or “anticipates,” or similar expressions which concern our strategy, plans, projections or intentions. By their nature, forward-looking statements: speak only as of the date they are made; are not statements of historical fact or guarantees of future performance; and are subject to risks, uncertainties, assumptions or changes in circumstances that are difficult to predict or quantify. Our expectations, beliefs, and projections are expressed in good faith, and we believe there is a reasonable basis for them. However, there can be no assurance that management’s expectations, beliefs, and projections will result or be achieved, and actual results may vary materially from what is expressed in or indicated by the forward-looking statements. Certain important factors that could cause actual results to differ, possibly materially, from our expectations, beliefs and projections reflected in such forward-looking statements can be found in the “Risk Factors” and “Cautionary Note Regarding Forward-Looking Statements” sections included in the Company’s Annual Report on Form 10-K and Quarterly Reports on Form 10-Q. We undertake no obligation to publicly update or review any forward-looking statement, whether as a result of new information, future developments or otherwise, except as may be required by any applicable securities laws. You should not place undue reliance on forward-looking statements, which speak only as of the date they are made.

Item  9.01.        Financial Statements and Exhibits.

(d)Exhibits.

Exhibit Number						Description
99.1						Press Release of the Company, dated July 5, 2025
104						Cover Page Interactive Data File (embedded within the Inline XBRL document)

SIGNATURE

Pursuant to the requirements of the Securities Exchange Act of 1934, the registrant has duly caused this report to be signed on its behalf by the undersigned hereunto duly authorized.

INGRAM MICRO HOLDING CORPORATION
By:			/s/ Augusto Aragone
Name:			Augusto Aragone
Title:			Executive Vice President, Secretary and General Counsel

Date: July 7, 2025

FAQ

What happened to Ingram Micro (INGM) on July 5, 2025?

The company discovered ransomware on certain internal systems and reported the incident in a Form 8-K.

How is Ingram Micro responding to the ransomware incident?

Management took affected systems offline, implemented mitigation measures, engaged cybersecurity experts, and notified law enforcement.

Are customer orders currently affected at Ingram Micro?

Yes. The filing states the company is working to restore systems so it can process and ship orders.

Did Ingram Micro disclose financial impact or data loss from the attack?

No. The 8-K does not quantify financial impact or confirm whether data was compromised.

Where can investors find further details about the incident?

Additional information is in Exhibit 99.1 (press release) attached to the Form 8-K.