This event is archived. Final snapshot from when the story concluded. View on Dashboard
Events / Iran-linked Handala Cyberattack on Stryker
International cyberattack

Iran-linked Handala Cyberattack on Stryker

Analysis based on 33 articles · First reported Mar 11, 2026 · Last updated Mar 13, 2026

Sentiment
-50
Attention
4
Articles
33
Market Impact
Direct
Live prominence charts, article sentiment distribution, and event development timeline available on the NewsDesk Dashboard
Market Impact

The cyberattack on Stryker, a major medical technology company, caused its shares to fall and raised concerns about supply chain disruptions in the healthcare sector. This incident highlights the increasing risk of destructive cyber warfare, particularly from state-linked actors, impacting publicly traded companies and critical infrastructure.

Medical Technology Cybersecurity Healthcare
Event Summary

Stryker, a leading U.S. medical technology company, experienced a significant global network disruption due to a cyberattack on March 11. The Iran-linked hacking group Handala claimed responsibility, stating the attack was retaliation for US-Israeli missile strikes on Iran. The incident affected Stryker's Microsoft environment, with reports of remote Windows devices being wiped and employees losing access to corporate systems. Cybersecurity experts suggest the attack was a 'wiper' operation, aiming for destruction rather than financial gain, and may have leveraged Microsoft Intune to wipe over 200,000 systems across 79 countries. The disruption led to a more than 3% drop in Stryker's shares and raised concerns among cybersecurity executives about potential ripple effects on the medical equipment supply chain. This event underscores the growing threat of nation-state cyber warfare and its direct impact on global corporations and critical industries.

Key Actions
100 Handala claimed responsibility for cyberattack Stryker
95 Stryker experienced global network disruption
80 Stryker shares fell
80 Stryker stock price fell
60 United States conducted airstrikes Iran
60 Israel conducted airstrikes Iran
Entities Involved
stock
Stryker
Stryker experienced a significant global network disruption due to a cyberattack, leading to system outages, wiped devices, and a drop in its stock price. The company is working to restore operations and assess the full impact.
Importance 100 Sentiment -70
mil
Handala
Handala, an Iran-linked hacking group, claimed responsibility for the cyberattack on Stryker, stating it was retaliation for a missile strike in Iran. The group allegedly used Microsoft Intune to wipe over 200,000 systems.
Importance 90 Sentiment -80
cnt
Iran
Iran is linked to the Handala hacking group, which carried out the cyberattack on Stryker as alleged retaliation for US-Israeli airstrikes. This incident highlights Iran's expanding cyber capabilities and its use in geopolitical tensions.
Importance 70 Sentiment -60
cnt
United States
The United States, along with Israel, has been involved in airstrikes against Iran, which Handala cited as a reason for the cyberattack on Stryker. US intelligence officials had warned of potential retaliatory cyberattacks.
Importance 50 Sentiment -30
cnt
Israel
Israel, in conjunction with the United States, has been conducting airstrikes against Iran, which Handala claimed motivated their cyberattack on Stryker. Handala has previously targeted Israel in cyber operations.
Importance 50 Sentiment -30
stock
Microsoft
Stryker's global network disruption occurred within its Microsoft environment, and the attackers allegedly used Microsoft Intune to wipe devices. This highlights potential vulnerabilities in widely used enterprise tools.
Importance 30 Sentiment -10
subs
News Corp===The Wall Street Journal
News Corp===The Wall Street Journal was among the first to report on the cyberattack on Stryker, contributing to the public dissemination of information about the incident.
Importance 10 Sentiment 10
+ 5 more entities View on Dashboard
Relationships
Iran related Handala
Stryker related Microsoft
Stryker related Handala
Stryker related Iran
NEWSDESK
Track this event live

Set up alerts, explore entity relationships, search across thousands of events, and build custom intelligence feeds.

Open Dashboard

About NewsDesk

NewsDesk is a news intelligence platform that converts raw news articles into structured data. It tracks events, entities, and the relationships between them, with sentiment and attention metrics derived from thousands of articles. Pages on this site are daily static snapshots from the platform's live database. For real-time tracking, search, and alerts, the full dashboard is at app.newsdesk.dev.