Iran-Linked Hackers Target US Medical Firm
An Iranian-linked hacking group, Handala, claimed responsibility for a major breach of Stryker, a U.S. medical device manufacturer, allegedly in retaliation for a school bombing in Iran. The group claims to have stolen 50 terabytes of data and wiped thousands of systems. Stryker says they found no ransomware or malware, but the incident raises concerns about geopolitical cyber warfare.
The Handala group, which claimed credit for the Stryker hack, previously targeted Israeli defense contractors and a water authority using similar methods. This pattern suggests a calculated campaign focused on critical infrastructure and entities perceived as adversaries by Iran. Stryker's initial assessment found no ransomware, but the company is working with cybersecurity firms to investigate the extent of data exfiltration and system damage. The potential theft of 50 terabytes raises concerns about compromised intellectual property, patient data, and operational schematics. The attack follows a recent U.S. government warning about Iranian government-linked hacking groups increasing their targeting of U.S. infrastructure. This incident may trigger increased scrutiny of cybersecurity practices within the medical device industry and calls for stronger international protocols.
