Particle.news
Download on the App Store
68 ARTICLES
·
4h ago

Cyberattack Disrupts Stryker’s Global Microsoft Network as Iran-Linked Group Claims Role

Investigators are assessing scope and attribution after Stryker reported containment with no sign of ransomware.

Image
Iran-linked hackers have launched a massive cyberattack on a U.S.-based medical technology company as retaliation for the war in Iran.
The logo of Stryker medical technology is seen on their plant in Carrigtwohill, County Cork, Ireland, on March 28, 2025.
Image

Overview

  • Handala, a hacktivist persona described as Iran-linked, claimed responsibility, but its assertions about scale and data theft have not been independently verified.
  • Employees across multiple countries lost access to email and internal tools as Windows devices were wiped and company login pages displayed Handala branding, with major disruption reported in Cork, Ireland.
  • Stryker says it is working with Microsoft to restore systems and has notified national cyber authorities, with Ireland’s National Cyber Security Centre assisting the response.
  • Technical experts pointed to possible misuse of Microsoft Intune device-management functions to trigger remote wipes, though the precise intrusion method remains under investigation.
  • Stryker shares fell several percent after news of the attack, and healthcare groups said they had not confirmed supply chain or hospital care impacts as assessments continue.