Source: the perpetrators of the wiper attack on Stryker appear to have used Microsoft Intune to issue a “remote wipe” command against all connected devices
A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker …
Krebs on Security Brian Krebs
Related Coverage
- Medtech giant Stryker offline after Iran-linked wiper malware attack BleepingComputer · Sergiu Gatlan
- “Handala Hack” - Unveiling Group's Modus Operandi Check Point Research
- US Medical Company Hit With Cyberattack, And This Hacker Group Is Claiming Responsibility BGR · Jonathan Sayers
- The who, what, and why of the attack that has shut down Stryker's Windows network Ars Technica · Dan Goodin
- Stryker attack highlights nebulous nature of Iranian cyber activity amid joint U.S.-Israel conflict CyberScoop · Tim Starks
- Medical giant Stryker crippled after Iranian hackers remotely wipe computers CSO · John E. Dunn
- US medtech giant Stryker confirms a global outage due to a cyberattack; Iran-linked group Handala says the hack is retaliation for a strike on a school in Iran Wall Street Journal · James Rundle
- Medical device giant Stryker confirms cyberattack as employees say devices were wiped The Record · Jonathan Greig
- Pro-Iran hacktivist group says it is behind attack on medical tech giant Stryker TechCrunch · Lorenzo Franceschi-Bicchierai
- Iran-backed hackers claim wiper attack on medtech firm Stryker Hacker News
- Active Directory Compromise Allows Attackers to Remotely Wipe Medical Supply Company Devices Lobsters
- Stryker Reports Widespread Disruption After Iran Hack Silicon UK · Matthew Broersma
- US Officials Warn That Iran Is Opening Up a New Front In the War Townhall · Jeff Charles
- Cyberattack tied to war in Iran has Mass General Brigham on alert The Boston Globe · Marin Wolf
- Stryker's manufacturing, shipping disrupted after cyberattack Cybersecurity Dive
- Stryker hack could set stage for more pro-Iran cyber sabotage FCW · David DiMolfetta
- Stryker cyberattack alarms health systems Healthcare IT News · Andrea Fox
Discussion
-
@bfsesq
@bfsesq
on bluesky
Holy crap, anyone that had Outlook for work on their personal phone had their phone wiped. — My wife also works in the medical field and uses a locked-down Outlook on her personal phone. (I'm sure everyone will now say, yeah, don't do that) [embedded post]
-
@utkan.com
Andy Engin Utkan
on bluesky
Ahahahaha, terrible but kind of funny at the same time: “Microsoft Intune is a cloud-based unified endpoint management (UEM) service that secures and manages user access to organizational resources across Windows, Android, iOS, macOS, and Linux.” [embedded post]
-
@patrickhowelloneill.com
Patrick Howell O'Neill
on bluesky
The medical equipment giant Stryker confirmed they are experiencing a “global network disruption” that comes “as a result of a cyber attack.” Pro-Iranian hacking group Handala claimed responsibility. Workers were sent home, devices wiped. www.bloomberg.com/news/article...
-
@wbm312
Whitney Merrill
on bluesky
Reason #37482 why you should NEVER let your employer put MDM on your personal device and you should instead opt for a second work phone. — krebsonsecurity.com/2026/03/ iran...
-
@withenoughcoffee
Autumn Nash
on bluesky
To use security and compliance software to do a full wipe remote of the companies systems and laptops is next level. — krebsonsecurity.com/2026/03/ iran...