A cyberattack attributed to pro-Iran hackers has led to a significant “global network disruption” at Stryker, a prominent medical device manufacturer based in Michigan. The company confirmed this incident in a statement to CNN, emphasizing that the disruption is linked to their Microsoft environment. Notably, Stryker reported that there are no signs of ransomware or malware, and the attack appears to be contained. The company has activated its business continuity measures to ensure ongoing support for customers and partners during this incident.
Stryker specializes in a wide array of hospital equipment, including defibrillators and ambulance cots, and serves over 150 million patients through its extensive health equipment and services. Reports indicate that the cyberattack also impacted Stryker’s computer systems in Ireland, raising concerns about potential disruptions in the provision of medical equipment to hospitals in the U.S. Healthcare cybersecurity experts have expressed heightened vigilance regarding any fallout from this attack.
This incident marks one of the more prominent pro-Iranian cyberattacks against U.S. infrastructure following recent military actions involving the U.S. and Israel against Iran. U.S. intelligence officials have been issuing warnings about potential retaliatory actions from Tehran-linked hacker groups in response to these incidents.
The group behind the attack claimed on social media that their actions were retaliation for a missile attack on an elementary school in Iran, which Iranian state media reported resulted in the deaths of at least 168 children. The Pentagon is currently investigating this missile strike.
Following the news of the cyberattack, Stryker’s stock saw a decline of over 3%, reflecting investor concerns. In the context of the ongoing geopolitical tensions, Iranian-linked hackers have remained relatively dormant in their attacks on U.S. entities since the onset of the conflict last month. According to email security firm Proofpoint, they detected only one hacking effort, which targeted an employee at a U.S. think tank, during this period.
Experts in cybersecurity, such as Joshua Corman, have raised alarms about the industry’s focus on economically motivated breaches, warning that neglecting the threat posed by nation-states could lead to significant disruptions. Corman emphasized that adversaries like China, Iran, and Russia possess the capabilities and intentions to inflict substantial harm on U.S. infrastructure.
