March 17, 2026

Stryker Cyberattack: Tens of Thousands of Employee Devices Wiped in Massive Data Breach

Vaibhav March 17, 2026
Stryker Cyberattack: Tens of Thousands of Employee Devices Wiped in Massive Data Breach
Post Views: 10

A Cyberattack on Medical Device Manufacturer Stryker Wipes Tens of Thousands of Employee Devices, Disrupts Global Operations

A recent cyberattack on Stryker, a prominent medical device manufacturer, has resulted in the destruction of data on nearly 80,000 employee devices worldwide.

Attack Details

The attack, which occurred on March 11, targeted the company’s internal Microsoft environment, affecting its global operations and forcing manual order processing.

According to reports, the attackers compromised an administrator account and created a new Global Administrator account, granting them the authority to issue remote wipe commands across Stryker’s managed device fleet.

As a result, employees in multiple countries reported that their company laptops and phones had been erased overnight, with some also losing data on personal devices that had been enrolled in the company network.

Attack Method and Impact

The attack did not involve ransomware or malware, but instead utilized Microsoft Intune’s remote wipe capability to destroy data on the affected devices.

This approach has been described as a form of “digital paralysis,” as it rendered the devices inoperable and resulted in a significant disruption to the company’s operations.

Stryker has stated that the attack was contained to its internal corporate environment and did not affect its connected products, digital tools, or other life-saving technologies.

Investigation and Response

The attack has been claimed by a group known as Handala, which is believed to have links to Iran.

However, the group’s claims of wiping more than 200,000 systems and stealing 50 terabytes of data have not been verified, and Stryker has not endorsed these figures.

The incident is being investigated by Microsoft’s Detection and Response Team (DART) and Palo Alto Networks’ Unit 42, with Stryker also working with authorities and outside cybersecurity experts to assess the operational and financial implications of the breach.

The attack serves as a reminder that cyber risk is no longer confined to stolen records or frozen desktops, and that companies must prioritize the security of their internal control planes to prevent such disruptions.

Aftermath and Response

In the aftermath of the attack, Stryker has emphasized the importance of separating fact from fiction in the public narrative surrounding the incident.

The company has not confirmed the details of Handala’s claims, and investigators have found no evidence of data exfiltration.

As the investigation continues, Stryker is working to restore its systems and minimize the impact of the attack on its operations and customers.



About Author

Vaibhav

See author's posts

More Stories

Intuitive Surgical Discloses Cybersecurity Breach Exposing Patient Data

Intuitive Surgical Discloses Cybersecurity Breach Exposing Patient Data

Vaibhav March 17, 2026
8th Pay Commission Scam Apps: A New Wave of Cyber Fraud Threats

8th Pay Commission Scam Apps: A New Wave of Cyber Fraud Threats

Vaibhav March 17, 2026
Hackers Attempt to Breach Poland's Nuclear Research Centre, Raising Concerns Over Cybersecurity

Hackers Attempt to Breach Poland’s Nuclear Research Centre, Raising Concerns Over Cybersecurity

Vaibhav March 16, 2026

Latest Cyber Security News

Enterprise-Grade Data Security with New Kingston IronKey USB Drive

Enterprise-Grade Data Security with New Kingston IronKey USB Drive

Vaibhav March 17, 2026
Kore.ai Unveils Agent Management Platform for Enterprise AI Governance

Kore.ai Unveils Agent Management Platform for Enterprise AI Governance

Vaibhav March 17, 2026
Huntress Enhances Agentic Security Platform with Advanced Endpoint and Identity Risk Detection and Mitigation Tools

Huntress Enhances Agentic Security Platform with Advanced Endpoint and Identity Risk Detection and Mitigation Tools

Vaibhav March 17, 2026
AI-Powered Call Analysis for Enhanced Fraud Prevention with Pindrop Fraud Assist

AI-Powered Call Analysis for Enhanced Fraud Prevention with Pindrop Fraud Assist

Vaibhav March 17, 2026
Enhance Visibility and Control Over Unauthorized AI Usage with SailPoint

Enhance Visibility and Control Over Unauthorized AI Usage with SailPoint

Vaibhav March 17, 2026
en_USEnglish
en_USEnglish