Who, what, and why of the attack that shut down Stryker's Windows network

Within hours of the US and Israel launching airstrikes on Iran two weeks ago, security professionals warned organizations to be on heightened watch for destructive retaliatory hacks. On Wednesday, Stryker, a multinational maker of medical devices, confirmed a cyberattack that took down much of its infrastructure, and a hacking group long known to be aligned with the Iranian government claimed responsibility.

Stryker said it is responding to a "global network disruption to our Microsoft environment as a result of a cyber attack." Responders have found no indication that ransomware or malware were involved, believe the incident is contained and limited to the internal Microsoft environment, and said Lifepak, Lifenet, and Mako devices were all functioning normally.

In a Securities and Exchange Commission filing the company said it had no timeline for recovering normal day-to-day activities. How the attackers gained access remains unknown.

stryker, cyberattack, windows network, microsoft environment, iran, retaliatory hacks, hacking group, medical devices, ransomware, sec filing