Mar 11
/
Latest News
Stryker Operations Grounded Worldwide Following Massive Cyberattack
Medical technology giant Stryker confirmed on Wednesday that a sophisticated cyberattack has caused a global network disruption, effectively paralyzing the company’s operations across its international facilities.
While the Michigan-based manufacturer stated the incident appears contained and has found no evidence of traditional ransomware, reports from employees suggest a much more destructive event. Staff members across the globe, including at major production plants in Ireland, reported being sent home as corporate computers, servers, and mobile devices were systematically wiped clean. On social media, workers described a total blackout of work applications and email systems, with some noting that even personal phones linked to corporate accounts were affected.
The disruption appears to be the work of Handala, a hacking group linked by cybersecurity experts to Iranian threat actors. While Stryker’s automated phone systems cited a "building emergency," employees attempting to log in were reportedly met with the Handala logo on their screens. The group issued a statement claiming responsibility for the attack, citing geopolitical tensions involving the U.S., Israel, and Iran as the primary motivation. Handala claims to have wiped over 200,000 systems and exfiltrated 50 terabytes of data, a tactic consistent with their history of deploying "wiper" malware designed for permanent data destruction rather than financial extortion.
Stryker, which reported over $25 billion in earnings last year and maintains significant contracts with the U.S. Department of Defense, has activated business continuity measures to support its partners and customers. However, the scale of the "global network disruption" to its Microsoft environment remains significant. This attack marks a major escalation for Handala, which has previously targeted Israeli national security infrastructure and government systems. As of Wednesday evening, Stryker has not officially commented on Handala’s involvement or the specific claims regarding the massive loss of data and hardware functionality.
While the Michigan-based manufacturer stated the incident appears contained and has found no evidence of traditional ransomware, reports from employees suggest a much more destructive event. Staff members across the globe, including at major production plants in Ireland, reported being sent home as corporate computers, servers, and mobile devices were systematically wiped clean. On social media, workers described a total blackout of work applications and email systems, with some noting that even personal phones linked to corporate accounts were affected.
The disruption appears to be the work of Handala, a hacking group linked by cybersecurity experts to Iranian threat actors. While Stryker’s automated phone systems cited a "building emergency," employees attempting to log in were reportedly met with the Handala logo on their screens. The group issued a statement claiming responsibility for the attack, citing geopolitical tensions involving the U.S., Israel, and Iran as the primary motivation. Handala claims to have wiped over 200,000 systems and exfiltrated 50 terabytes of data, a tactic consistent with their history of deploying "wiper" malware designed for permanent data destruction rather than financial extortion.
Stryker, which reported over $25 billion in earnings last year and maintains significant contracts with the U.S. Department of Defense, has activated business continuity measures to support its partners and customers. However, the scale of the "global network disruption" to its Microsoft environment remains significant. This attack marks a major escalation for Handala, which has previously targeted Israeli national security infrastructure and government systems. As of Wednesday evening, Stryker has not officially commented on Handala’s involvement or the specific claims regarding the massive loss of data and hardware functionality.
Executive IT Forums, Inc.
Educational Programs on Information Technology, Governance, Risk Management, & Compliance (GRC).
Our Newsletter
Get regular updates on CPE programs, news, and more.
Thank you!
Copyright © 2026 Executive IT Forums, Inc. All Rights Reserved.
Get started
Let us introduce our school
Write your awesome label here.