Iranian Hackers Attack U.S. Company Stryker in Escalation of Cyber War

Iranian threat group Handala, linked to Iran's Revolutionary Guard Corps, claimed responsibility for a wiper attack on U.S. medical technology company Stryker, allegedly erasing data from over 200,000 devices across 79 countries and exfiltrating 50 TB of data. The attack targeted Stryker's Microsoft environment and was framed as retaliation for U.S. and Israeli military strikes on Iran. Stryker confirmed a global network disruption, closed its Michigan headquarters, and filed an SEC disclosure. Iran's IRGC has also named major U.S. tech companies—including AWS, Google, Microsoft, IBM, Oracle, Nvidia, and Palantir—as future targets. Security experts warn this represents a shift from ransomware to destructive sabotage, and call it a wake-up call for CISOs in critical manufacturing and healthcare sectors.