Stryker Hit by Pro-Iran Cyberattack
Stryker, a major medical device manufacturer, suffered a major cyberattack claimed by a pro-Iranian hacking group. The attack reportedly wiped data from over 200,000 systems and stole 50TB of data, forcing office shutdowns and causing its stock to hit a 52-week low. The incident disrupted global IT systems, including ordering and shipping, raising concerns about medtech supply chain security.
The pro-Iranian hacking group Handala claimed responsibility for the attack, citing it as retaliation for a missile strike on an Iranian school on February 28, 2026. The group stated they erased data from over 200,000 Stryker systems across 79 countries and stole 50TB of data. Handala, linked to the Islamic Revolutionary Guard Corps, has been active since at least 2023 and is known for politically motivated cyber operations. Stryker has launched an investigation with external cybersecurity experts and notified the Securities and Exchange Commission (SEC). The company is working to restore its electronic ordering system and has business continuity measures in place to support customers. Products like Mako surgical robots are safe to use, and communication with employees is secure. The Cybersecurity and Infrastructure Security Agency (CISA) has also launched an investigation into the attack. Stryker believes the attack is contained but expects continued disruptions to its information systems. The company has advised employees to disconnect from all networks and not turn on company-issued devices.
