Michigan-based medical device company Stryker is facing a global network disruption following a cyberattack that may be linked to a pro-Iranian hacking group, the company confirmed Thursday.
The incident has affected Stryker's Microsoft environment, temporarily preventing employees from accessing internal systems.
A company employee in Boise, Idaho, told Fox News that workers were advised not to connect to any Stryker VPNs or software on their devices.
Some coworkers reportedly had their work phones wiped Wednesday morning as a precaution.
"We have no indication of ransomware or malware and believe the incident is contained," Stryker said in a statement. "Our teams are working rapidly to understand the impact of the attack on our systems."
Although the company has not confirmed the involvement of any group, a pro-Iranian hacktivist organization later claimed responsibility on social media.
The group alleged that Stryker was a "Zionist-rooted corporation," claiming that 200,000 systems were affected and 50 terabytes of data were extracted, FoxBusiness reported.
The same group previously claimed to have breached Verifone, a New York City-based electronic payment technology company.
However, a Verifone spokesperson told FOX Business that the claims were false, stating, "We have observed recent allegations... and have found no evidence of any incident related to this claim and no service disruption to our clients."
Medical device giant hit by global network disruption after cyberattack possibly linked to pro-Iranian group https://t.co/O3yoqgmlZU
— FOX Business (@FoxBusiness) March 11, 2026
Stryker Cyberattack Disrupts Networks, Impact Still Unclear
Stryker, headquartered in Portage, Michigan, produces a wide range of medical devices, including artificial joints, surgical equipment, and hospital beds.
According to AP News, the company employs around 56,000 people globally and reported more than $25 billion in revenue in 2025.
The cyberattack has drawn attention from security experts.
Alexander Leslie, senior adviser at global threat intelligence firm Recorded Future, said the targeting of a major US healthcare manufacturer "is exactly the kind of pressure point that creates outsized strategic and political ripple effects."
He noted that the incident represents an escalation in the choice and impact of targets.
The Wall Street Journal reported that the hacker group's logo, Handala, appeared on Stryker's login pages, though the company has yet to provide a full timeline for restoring its network.
A filing with the Securities and Exchange Commission also noted that the "full scope" of the attack's impact on business operations remains unclear.
Join the Conversation