Iran-backed hackers claim wiper attack on medtech firm Stryker
2bluesc
87 points
19 comments
March 12, 2026
Related Discussions
Found 5 related stories in 48.6ms across 3,471 title embeddings via pgvector HNSW
- Iranian Hacktivists Strike Medical Device Maker Stryker and Wiped Systems strict9 · 54 pts · March 12, 2026 · 85% similar
- Pro-Iran hackers claim cyberattack on major US medical device maker zomg · 16 pts · March 11, 2026 · 77% similar
- Stryker Hit by Handala – Intune Managed Devices Wiped easyat · 12 pts · March 11, 2026 · 65% similar
- Self-propagating malware wipes Iran-based machines danousna · 11 pts · March 24, 2026 · 61% similar
- Iran appears to have conducted a significant cyberattack against a U.S. company chrisjj · 27 pts · March 12, 2026 · 60% similar
Discussion Highlights (9 comments)
bingogo
Medtech firms consistently underinvest in corporate network cybersecurity because almost all their security and compliance spending goes to device safety requirements, not IT hardening. This is exactly the kind of gap wiper attacks target.
cobbzilla
My only knowledge of this company is as a manufacturer of gurneys for ambulances. I guess they have some sensitive data on our emergency services organizations and their headquarters addresses and accounts payable people, maybe PII on signatories (officers, board members & “important people”) and whatnot. Anyone know if it would be worse?
marijan_div
Stryker is far more than ambulance gurneys. They’re one of the largest med-tech suppliers, with equipment in operating rooms, ICUs, and surgical departments everywhere. If a wiper actually hit internal systems, the bigger concern isn’t consumer data but disruption to manufacturing, logistics, and hospital support. That kind of outage could ripple through a lot of hospitals pretty quickly.
camillomiller
Seems dire but hardly a supply chain disrupting attack. Stryker is a huge supplier but it not as if this will debilitate the medical supply chain completely. Seems like the hackers found a door they could kick open easily and then justified the action ex-post.
JonChesterfield
So gain access to a machine that can ask microsoft intune to eviscerate the company, ask it to do so, done. Bit of a shame all the machines had that installed really. Reminds me of crowdstrike.
Banditoz
Does InTune have some sort of check that goes "if over 1% of devices are wiped within a certain timeframe, stop all new device wipe requests"? Seems like it should be a feature, especially if these kinda attacks pick up.
bitwize
The "Fucking for Virginity" approach to infosec strikes again!
jamesmishra
Some people on Twitter have jokingly suggested that the Iranians were looking for the maker of the Stryker military vehicle. https://en.wikipedia.org/wiki/Stryker
ChrisArchitect
Related: Iran warns U.S. tech firms could become targets as war expands https://news.ycombinator.com/item?id=47341007