Stryker, a leading US medical equipment manufacturer, has confirmed that a significant cyberattack has disrupted its global networks. The incident occurred on Wednesday, 11th March 2026, impacting the company's worldwide operations.
Contained Incident with No Ransomware Detected
In an official statement published on its website, Stryker announced that the cyberattack has been contained. The company emphasised that there is no indication of ransomware or malware involvement at this stage. "Our teams are working rapidly to understand the impact of the attack on our systems," the statement read.
Iran-Linked Hacking Group Suspected
The Wall Street Journal has reported that the logo of Handala, a hacking group with known links to Iran, appeared on Stryker's company login pages during the attack. This development suggests potential state-sponsored involvement, though investigations are ongoing.
Stryker's statement specifically noted that the cyberattack targeted its Microsoft programs, indicating a sophisticated breach of corporate systems. The company has not yet responded to additional information requests, leaving many questions unanswered about the full scope of the disruption.
Major Healthcare Manufacturer Impacted
Stryker, headquartered in Portage, Michigan, is a critical player in the global healthcare industry. The company manufactures a wide range of medical products, including artificial joints, surgical equipment, and hospital beds. With annual revenue exceeding $25 billion in 2025 and approximately 56,000 employees worldwide, any disruption to Stryker's operations has significant implications for healthcare providers globally.
Expert Analysis: Strategic Escalation
Alexander Leslie, a senior adviser at global threat intelligence company Recorded Future, highlighted the concerning nature of this attack. "What's notable is the escalation in target choice and effect," Leslie told The Associated Press.
Leslie explained that attacking a high-profile US healthcare manufacturer like Stryker "is exactly the kind of pressure point that creates outsized strategic and political ripple effects." This suggests the attack may have broader implications beyond mere corporate disruption, potentially affecting international relations and healthcare security.
The cyberattack on Stryker represents a serious escalation in targeting critical healthcare infrastructure. As the company works to restore full operations and assess the damage, the incident serves as a stark reminder of the vulnerabilities in global medical supply chains and the growing sophistication of cyber threats against essential industries.
