Particle.news
Download on the App Store
85 ARTICLES
·
6h ago

Stryker Cyberattack Spreads to Manufacturing and Shipping as Iran-Linked Group Claims Hit

Stryker says the intrusion was confined to its Microsoft environment with no sign of ransomware.

Image
Iran-linked hackers have launched a massive cyberattack on a U.S.-based medical technology company as retaliation for the war in Iran.
The logo of Stryker medical technology is seen on their plant in Carrigtwohill, County Cork, Ireland, on March 28, 2025.
Image

Overview

  • The hacking persona Handala claimed responsibility and framed the operation as retaliation for a deadly strike in Iran, with boasts of wiping 200,000 devices and stealing 50 TB of data that remain unverified.
  • Stryker reported wide operational disruption to order processing, manufacturing and shipping, and said business continuity plans are supporting customers during restoration.
  • Investigators have found no evidence of malware, and experts point to potential abuse of Microsoft Intune’s remote‑wipe capabilities as a plausible mechanism for the mass device resets.
  • Employees worldwide lost access to systems after Windows laptops and mobile devices enrolled in corporate management were wiped, with large hubs such as Cork, Ireland, heavily affected.
  • Authorities and private responders are probing the incident, markets initially pushed Stryker shares lower, and formal attribution beyond Handala’s claim has not been confirmed.