A gaggle of Iran-linked hackers say they’ve damaged into the servers of U.S. medical tech big Stryker, inflicting disruptions worldwide. As of Wednesday morning, a lot of Stryker’s international methods have been wiped, and a few login pages are as an alternative displaying the emblem of the hacker group.
The hacktivist group, generally known as Handala, claimed duty for the assault in a message posted on an X account purporting to belong to the group. The hackers wrote that they attacked Stryker “in retaliation for the brutal assault on the Minab faculty and in response to ongoing cyber assaults in opposition to the infrastructure” of Iran and its allies. The hackers have been referring to the Minab women faculty in Tehran, which the U.S. navy reportedly bombed in its current assaults on Iran, killing greater than 175 individuals, most of them kids.
Stryker, which makes medical gadgets and know-how for hospitals, doesn’t look like instantly linked to the current assaults on Iran, although it has operations in Israel and did final 12 months safe a $450 million contract from the Division of Protection to provide medical gadgets to the U.S. navy.
“On this operation, over 200,000 methods, servers, and cellular gadgets have been wiped and 50 terabytes of crucial knowledge have been extracted. Stryker’s workplaces in 79 international locations have been compelled to close down,” the hackers wrote.
The hackers’ claims look like at the least partly credible. In line with The Wall Road Journal, some Stryker methods all around the world have been wiped, and others are displaying the emblem of the hackers group on login pages.
“Our groups are actively working to revive methods and operations as shortly as doable. Stryker has enterprise continuity measures in place, and we’re dedicated to persevering with to serve our prospects,” a Stryker spokesperson instructed the Journal.
“Stryker is presently experiencing a extreme, international disruption throughout the Home windows surroundings impacting each consumer gadgets and servers,” learn a discover despatched to staff, based on the WSJ. “The problem is widespread and considerably affecting customers’ capacity to entry methods and providers.”
Techcrunch occasion
San Francisco, CA
|
October 13-15, 2026
The corporate didn’t instantly reply to TechCrunch’s request for remark. The U.S. Cybersecurity and Infrastructure Safety Company, which responds to cyberattacks, didn’t reply to a request for remark.
In line with the IBM X-Pressure Change, Handala emerged after Hamas’ October 7 assault on Israel and has focused Israeli civilian infrastructure, vitality corporations within the Gulf area, and Western organizations. “Its operations deal with producing disruptive and psychological impression,” the corporate wrote on the change, which tracks risk teams. “Handala employs a broad and evolving toolkit, together with phishing, customized wiper malware, ransomware‑model extortion, knowledge theft, and hack‑and‑leak exercise. Its campaigns constantly function ideological messaging, inflated or deceptive breach claims, and deliberate focusing on of life‑crucial sectors similar to healthcare and vitality.”
Handala additionally has a web site that lists and doxes dozens of Israelis who allegedly work or used to work for the Israeli Protection Forces, in addition to main native protection and surveillance contractors, similar to Elbit Techniques and NSO Group.
Israeli cybersecurity agency Examine Level wrote in a current report that for the reason that begin of the battle in Iran, Handala is “breaking into low-hanging methods, conducting hack-and-leak exercise, and timing the publication of stolen materials to maximise strain.”