Stryker, a major medical device manufacturer, confirmed a cyberattack that disrupted its global Microsoft network. The company said it doesn't know when normal operations will resume after the breach affected its internal systems. Handala Hack, an Iranian-aligned group, claimed responsibility for the attack that began Wednesday, wiping data from employee devices.

Social media posts from purported Stryker employees suggested phones and computers were wiped, with some devices displaying Handala Hack's logo. The Irish Examiner reported similar claims from anonymous sources. Stryker stated that critical medical devices including Lifepak, Lifenet, and Mako systems remained operational despite the network disruption.

Security experts believe the attackers may have used Microsoft's InTune management tool rather than traditional malware to execute the data wiping. Check Point researchers noted Handala Hack has historically used both custom and publicly available tools for destructive operations. The timing of the attack, following US and Israeli airstrikes on Iran, suggests retaliation for geopolitical actions. The breach demonstrates how Iranian-aligned groups can inflict economic damage on Western companies through cyber means while maintaining plausible deniability.