What type of data was compromised in the breach?

The stolen information includes personally identifiable information (PII) and operational details for EMEA and other regions. The nature of the attack and number of affected individuals has not been disclosed.

Incident

Electronics giant Avnet reports data breach affecting EMEA operations

Q: What happened to Avnet?

Electronics distributor Avnet experienced a data breach involving externally hosted cloud storage supporting an internal sales tool used in its Europe, Middle East, and Africa (EMEA) region. The Arizona-based company, which operates distribution and design/engineering centers in 125 countries, had approximately 1.3 terabytes of compressed data stolen from its systems.

Q: How much data was stolen in the Avnet breach?

Threat actors claimed they stole approximately 1.3 terabytes of compressed data from Avnet's systems, which equates to between 7 and 12 terabytes of raw data.

Q: Is the stolen data readable?

Avnet initially claimed that most of the data is not easily readable without access to Avnet's proprietary sales tool, which remains secure. However, this claim was contradicted by data samples published by threat actors on a dark web leak site, which clearly show sensitive information in plaintext format, including personally identifiable information. Avnet confirmed the existence of plaintext data but characterized it as non-sensitive information under GDPR definitions.

Q: What actions did Avnet take after discovering the breach?

Upon discovering the breach on September 26, Avnet immediately began rotating all secrets throughout its Azure and Databricks environments. The company completed credential rotation that same night and reported no further signs of unauthorized activity following the remediation efforts. Avnet has also informed relevant authorities about the breach.

Q: Were Avnet's global operations affected?

No, Avnet has emphasized that the incident was limited to a single system in the EMEA region and did not disrupt the company's global operations.

Q: Will affected parties be notified?

Yes, Avnet stated that impacted customers and suppliers will be contacted directly about the breach.

published: Oct. 7, 2025

Learn More

Electronics distributor Avnet is reporting a data breach after a breach of externally hosted cloud storage supporting an internal sales tool used in its Europe, Middle East, and Africa (EMEA) region.

The Arizona-based company operates distribution and design/engineering centers in 125 countries.

The incident was detected on September 26, 2024. According to threat actors who contacted BleepingComputer, they stole approximately 1.3 terabytes of compressed data from Avnet's systems, which should be between 7 and 12 terabytes of raw data. The stolen information includes

Personally identifiable information (PII)
Operational details for EMEA and other regions

The nature of the attack and number of affected individuals is not disclosed.

Avnet spokesperson acknowledged the breach but is claiming that "most of the data is not easily readable without access to Avnet's proprietary sales tool, which remains secure and was not impacted by this event." This claim is contradicted by data samples published by the threat actors on a dark web leak site which clearly show sensitive information in plaintext format, including personally identifiable information. Avnet confirmed the existence of plaintext data but characterized it as non-sensitive information under GDPR definitions. The company did not verify the authenticity of the leaked data samples.

According to the threat actors, Avnet breach the intrusion on September 26 and immediately began rotating all secrets throughout its Azure and Databricks environments without publicly disclosing the incident. The company completed credential rotation that same night and reported no further signs of unauthorized activity following the remediation efforts.

Avnet has emphasized that the incident was limited to a single system in the EMEA region and did not disrupt the company's global operations. The electronics distributor has informed relevant authorities about the breach and stated that impacted customers and suppliers will be contacted directly.

Electronics giant Avnet reports data breach affecting EMEA operations

Read More
Seasons Living data breach exposes residents and staff …
The Fraunhofer Institute for Industrial Engineering reports ransomware …
New Mexico Public Defenders reports cyberattack and data …
Barrett-Jackson auction company reports data breach
Missouri probation services provider reports data breach exposing …