Iran-Linked Handala Group Launches Cyberattack on Stryker Medical Technology

Iran-Linked Handala Group Launches Cyberattack on Stryker Medical Technology

First seen 11 Mar 2026, 14:57 UTC Irishmirror.IeBelfastliveIrishexaminerCorkbeo.IeMirror+189 83% similarity 75.0

Article Content

Browse articles
ThreatCluster

On March 11, 2026, the Iranian-linked hacking group Handala executed a significant cyberattack on Stryker, a major U.S. medical technology company, causing a global disruption across its Microsoft environment. The attack, described as a 'wiper' attack, reportedly wiped over 200,000 systems and extracted 50 terabytes of data, leaving thousands of employees unable to access their work devices. Handala claimed the attack was retaliation for U.S. military actions against Iran, specifically referencing a missile strike on a school in Minab that reportedly killed numerous children. Stryker confirmed the incident, stating there was no indication of ransomware or malware and that the situation was contained. The attack affected Stryker's operations in 79 countries, with significant impacts reported in Ireland, where many employees were unable to work. The company is currently working with Microsoft and cybersecurity agencies to restore its systems and investigate the breach.

Key Points: • Handala claimed responsibility for a cyberattack on Stryker, wiping over 200,000 systems. • The attack was framed as retaliation for U.S. military actions in Iran, particularly the Minab school incident. • Stryker reported no ransomware or malware involvement, indicating a focus on destruction rather than extortion.

ThreatCluster AI

Timeline

2026-03-11
Handala executes a cyberattack on Stryker, causing global disruption.
2026-03-11
Stryker confirms the attack and begins investigation with Microsoft.
2026-03-12
Stryker issues updates on the impact and recovery efforts from the attack.

Community

Browse all →