Iran-backed group Handala says it wiped 200,000+ devices and stole 50TB of data from Stryker in a major cyber strike tied to the ongoing US-Israel conflict. Get the latest on the global outage hitting medical devices, company response, and what it means for healthcare cybersecurity.
Iran-Linked Hackers Claim Responsibility for Major Cyber Attack on US Medical Device Maker Stryker
In a dramatic escalation of cyber warfare tied to the ongoing US-Israel conflict with Iran, a group with clear ties to Tehran has taken credit for crippling one of America’s biggest medical technology companies.
On Wednesday, March 11, 2026, the Iran-linked hacking collective Handala publicly claimed responsibility for a destructive cyberattack on Stryker Corporation, the Michigan-based maker of everything from surgical tools to hospital beds and orthopedic implants. The assault caused a widespread “global network disruption” that’s still affecting operations worldwide.
What Happened: A “Wiper” Attack, Not Ransomware
Unlike typical ransomware schemes that lock files and demand payment, this appears to be a wiper attack designed purely to destroy and disrupt.
According to the hackers’ own Telegram and social media posts, they remotely erased data from more than 200,000 systems, including servers, laptops, and mobile devices across Stryker’s offices in 79 countries. They also claim to have extracted 50 terabytes of sensitive company data, which they say is now “in the hands of the free people of the world.”
Employees reported seeing the Handala logo and flags splashed across login screens and locked Windows devices, confirming the breach hit the company’s Microsoft environment hard.
Stryker quickly issued a statement acknowledging the incident:
“We are experiencing a global network disruption to our Microsoft environment as a result of a cyberattack. Our teams are working rapidly to understand the impact and restore systems.”
The company stressed that no ransomware was involved and said the attack seems contained for now — though full recovery timelines remain unclear.
The Motive: Direct Retaliation for Iran Conflict
Handala left no doubt about why they targeted Stryker, calling the company a “Zionist-rooted corporation.” The group explicitly linked the hack to recent deadly US-Israeli airstrikes on Iran — specifically the February 28 strike on a girls’ school in the southern city of Minab that killed more than 170 people, most of them schoolchildren.
In their manifesto-style post, the hackers declared:
“This is only the beginning of a new chapter in cyber warfare.”
This marks one of the first major pro-Iran cyberattacks on a large U.S. corporation since the conflict escalated last month.
Market Reaction and Broader Impact
Stryker shares dropped roughly 3-4% in afternoon trading as news of the attack spread. Analysts are watching closely because any prolonged outage could ripple through hospitals and surgical centers that rely on Stryker’s equipment and software.
Cybersecurity experts warn this could signal a dangerous new phase: state-linked hacktivists shifting from small targets to critical infrastructure in healthcare — a sector already strained by previous attacks.
What Happens Next?
Stryker has not yet released details on whether patient data or core manufacturing systems were affected. Federal agencies, including the FBI and Cybersecurity and Infrastructure Security Agency (CISA), are expected to investigate given the national security implications.
Meanwhile, the same group also claimed an attack on payment technology firm Verifone the same day, though Verifone quickly denied any breach or disruption.
As the Iran conflict moves from traditional battlefields into cyberspace, incidents like this highlight how vulnerable even the biggest corporations have become. Healthcare systems worldwide could feel the pain if Stryker’s recovery drags on.
This story is developing rapidly. We’ll keep you updated as more details emerge from the company, investigators, and the hackers themselves.
Stryker cyberattack 2026, Iran-linked hackers Stryker, Handala hacking group, medical device cyber attack, Iran retaliation cyber strike, Stryker data breach, wiper attack medical company, global network disruption Stryker, Michigan medical giant hacked, cyber warfare Iran war
.webp)
0 Comments