Handala Hits Stryker Wipes 200,000 Devices

Iran-linked hacking group Handala said on March 12, 2026 that it breached U.S. medical device firm Stryker, exfiltrating about 50 TB of data and wiping over 200,000 devices, including employee personal devices. Stryker, a Michigan-based Fortune 500 company, says the disruption is limited to its internet Microsoft environment and that it sees no indication of ransomware. The incident highlights risks from compromised mobile device management tools.
Key Points
- 1Exfiltrates about 50 TB of data and wipes over 200,000 devices, including personal employee devices
- 2Demonstrates attacker control of Stryker's Microsoft Intune MDM, enabling mass erasure and credential loss
- 3Mandates immediate audit of MDM scopes and separation of personal device management from corporate controls
Scoring Rationale
High novelty and actionable risk mitigation; slightly limited by preliminary reporting and incomplete forensic details.
Sources
Public references used for this report.
Practice with real Health & Insurance data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Health & Insurance problems
