Iran-backed hackers claim wiper attack on medtech firm Stryker
2 days ago
- #healthcare
- #cybersecurity
- #hacktivism
- A hacktivist group linked to Iran's intelligence agencies, Handala, claims responsibility for a data-wiping attack on Stryker, a global medical technology company.
- Stryker, based in Michigan, reported $25 billion in sales last year and has 56,000 employees across 61 countries.
- The attack forced Stryker to shut down offices in 79 countries, affecting over 200,000 systems, servers, and mobile devices.
- Handala stated the attack was retaliation for a U.S. missile strike on an Iranian school that killed 175 people, mostly children.
- Palo Alto Networks links Handala to Iran’s Ministry of Intelligence and Security (MOIS), describing its activities as opportunistic and focused on Israel.
- The attackers allegedly used Microsoft Intune to issue a remote wipe command, disrupting Stryker’s operations and healthcare supply chains.
- Stryker employees reported devices being wiped, and login pages defaced with the Handala logo.
- Healthcare providers are affected, with some unable to order surgical supplies from Stryker.
- The American Hospital Association (AHA) is monitoring the situation but has not yet reported direct impacts on U.S. hospitals.
- The attack raises concerns about the vulnerability of cloud-based IT solutions and the broader implications for healthcare supply chains.