Stryker restoring systems after pro‑Iran hackers wiped employee devices

Medical tech giant Stryker said it is restoring computers and its internal network after a March 11 cyberattack that allowed pro‑Iranian hackers to remotely wipe tens of thousands of employee devices. The attack caused widespread disruption to the company’s operations and is thought to be the first major U.S.

cyberattack in response to the Trump administration’s war in Iran. Stryker said the breach was contained to its internal Microsoft environment and that its internet-connected medical products are safe to use. While the cause remains under investigation, the company said it has seen no indication of ransomware or malware, but its ability to process orders, manufacture or ship devices continues to be disrupted.

A pro‑Iran hacking group called Handala claimed responsibility, saying the breach was in retaliation for a U.S. air strike on an Iranian school that killed at least 175 people, mostly children, and the hackers defaced Stryker’s login pages with their logo.

United States

stryker, cyberattack, handala, pro-iranian, device wipe, microsoft environment, ransomware, medical products, manufacture, login pages