A state intelligence-linked hacktivist group deployed wiper malware against a $25 billion medical technology and defense industrial base supplier, causing a global network disruption that sent over 5,000 workers home, triggered an SEC filing, and temporarily disrupted emergency medical communications in at least one state. The group claims to have erased data from 200,000+ devices and exfiltrated 50TB of data, though these claims remain unverified. Multiple threat intelligence firms assess this as the first confirmed significant destructive cyber operation against a major corporation since the conflict began — marking a transition from hacktivist noise to operational destruction targeting healthcare and defense supply chains.

Links & Resources

• https://www.cnn.com/2026/03/11/politics/pro-iran-hackers-cyberattack-medical-device-maker
• https://krebsonsecurity.com/2026/03/iran-backed-hackers-claim-wiper-attack-on-medtech-firm-stryker/
• https://www.securityweek.com/medtech-giant-stryker-crippled-by-iran-linked-hacker-attack/
• https://www.nextgov.com/cybersecurity/2026/03/cisa-launches-investigation-stryker-cyberattack/412079/
• https://cyberscoop.com/stryker-cyberattack-iranian-hackers-handala/
• https://www.insurancejournal.com/news/national/2026/03/12/861563.htm
• https://www.stryker.com/us/en/about/news/2026/a-message-to-our-customers-03-2026.html
• https://nationalcioreview.com/articles-insights/extra-bytes/breaking-suspected-iranian-linked-malware-hits-medical-tech-giant/