Iran-Linked Cyberattack Disrupts U.S. Medical Tech Firm Stryker

A significant cyberattack believed to be linked to Iran has disrupted the global computer systems of Stryker, raising concerns that geopolitical tensions are increasingly spilling over into the digital domain.

The Michigan-based company confirmed that it experienced a cyber incident that disrupted parts of its global network, particularly systems connected to its Microsoft environment. In a statement, Stryker said the attack caused a “global network disruption” that limited access to some internal systems and affected employee devices and applications.

Stryker is one of the largest medical device manufacturers in the United States, employing roughly 56,000 people and operating in more than 60 countries. The company supplies a wide range of healthcare products, including surgical equipment, orthopedic implants, and hospital technologies used by medical providers around the world.

Early reports indicate that a pro-Iranian hacking group calling itself Handala has claimed responsibility for the attack. The group reportedly said the operation was carried out in retaliation for military actions linked to the ongoing conflict involving the United States, Israel, and Iran.

While the hackers claim to have wiped systems and extracted large amounts of data, the full extent of the breach remains under investigation. Stryker has said there is currently no evidence of ransomware or malicious software affecting its medical devices or patient systems, and the disruption appears to be limited mainly to internal corporate networks.

Employees reported that some company laptops, mobile phones, and other connected devices suddenly stopped functioning as the attack spread across the company’s Microsoft-based infrastructure. In response, Stryker advised staff to avoid connecting to corporate networks while cybersecurity teams worked to contain the incident.

The cyberattack has already caused operational disruptions, including delays in order processing, manufacturing, and shipments of certain medical products. The company said it is working with cybersecurity experts and external advisers to restore affected systems and investigate how the breach occurred.

Cybersecurity analysts say the attack highlights a growing risk for civilian companies during geopolitical conflicts. Businesses in healthcare, energy, technology, and logistics are increasingly viewed as strategic targets in cyber warfare, even if they are not directly involved in military operations.

Experts warn that tensions in the Middle East could lead to additional cyber incidents targeting Western companies and infrastructure. Governments and security agencies have already urged organizations to strengthen cybersecurity defenses as digital attacks become a more common feature of modern conflict.

For now, Stryker continues working to restore systems and assess the full impact of the breach, while investigators attempt to determine whether the cyberattack was directly coordinated by state actors or carried out by independent hacktivist groups aligned with Iran.