Hackers Use Remote Wipe Tool to Knock Out U. S. Medical Device Maker

A cyberattack blamed on a group tied to Iran recently hit Stryker, a major U. S. medical technology firm that supplies equipment worldwide. The incident began just after midnight on Wednesday, when employees found their work phones and laptops suddenly unusable. The company reported that the attack disrupted parts of its Microsoft environment, but no evidence of ransomware was found. The hackers are thought to have accessed Stryker’s Microsoft Intune console, a tool normally used to manage corporate devices. Once inside, they triggered remote‑wipe commands that erased device data and returned the equipment to factory settings. This move shut down many of Stryker’s operations, forcing the company to activate business‑continuity measures while it works to restore systems. The group that claimed responsibility posted on social media, including Telegram and X, but independent verification is lacking. They suggested the attack was retaliation for a recent event in Iran. Whether that claim is true remains unclear, but it underscores how geopolitical tensions can spill over into corporate cyber‑attacks.Iran has a history of launching destructive “wiper” attacks, such as the 2012 assault on Saudi Aramco and a 2014 attack on Sands Casino. While most recent incidents involving Iranian actors focus on espionage, this Stryker case may signal a shift toward more aggressive tactics that target critical infrastructure. The broader lesson is that even everyday administrative tools can become weapons if attackers gain control. Small businesses, hospitals, and individual users are at risk if similar methods spread. Simple defenses—strong unique passwords, two‑factor authentication, regular backups, and reliable antivirus software—can reduce vulnerability. Staying alert to new attack methods is also crucial. If you’re worried about what would happen if your devices were wiped overnight, consider reviewing your security posture now. Preparing in advance can mean the difference between a quick recovery and a prolonged outage.