Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Medical technology giant Stryker said it is in the process of restoring its computers and internal network after the reported cyberattack Allowed pro-Iranian pirates To scan tens of thousands of employee devices remotely.
The hack, which led to widespread ongoing disruption of the company’s operations, is believed to be the first major cyberattack in the United States in response to the Trump administration’s war in Iran.
Stryker said in Update over the weekend The March 11 cyberattack was contained within the company’s internal Microsoft environment, and that its Internet-connected medical products are “safe to use.”
While the cause of the breach remains under investigation, the medical device technology manufacturer said it saw no indication of ransomware or malware. Stryker said its ability to process orders, manufacture or ship devices remains idled.
A pro-Iranian hacking group called Handala He took credit for the devastating violationclaiming that the hack was a response to US air strike on an Iranian school Which claimed the lives of at least 175 people, most of them children. The hackers also defaced the company’s login pages with its own logo.
according to Sleeping computerThe Hanthala hackers may have hacked using an internal Stryker administrator account that gave them access Almost unlimited access To the company’s Windows network. The hackers allegedly gained access to the company’s Microsoft Intune dashboards, which allow for remote management of employees’ laptops and mobile devices, such as deleting data if an employee’s device is lost or stolen.
A successful compromise of the company’s Intune dashboards would have allowed hackers to remotely wipe employee phones and laptops, including personal devices, without using malware.
The Wall Street Journal It also reported that hackers targeted Intune.
A Stryker spokesperson did not respond to a request for comment or questions about the breach, including whether the account allegedly compromised was protected with multi-factor authentication.
It is unclear how the hackers gained access to the Stryker network initially. Security researchers with Palo Alto Networks He said the Handala hackers may have relied on phishing to penetrate the Stryker network. IBM He said the Iran-aligned hacking group is known for using phishing techniques and destructive attacks, including targeting the healthcare and energy sectors. Malware to steal informationwhich can steal a person’s passwords and credentials, may also be liable.
Stryker has 56,000 employees worldwide and operates in more than 60 countries. According to Reuters.