Medical technology giant Stryker has confirmed that disruptions caused by a recent cyberattack are continuing, affecting parts of its internal systems as the company works to restore operations and investigate the incident.
The Michigan-based company said the cyberattack caused a global network disruption to its Microsoft environment, limiting access to certain internal systems used by employees. The full extent of the impact remains under investigation.
Global network disruption reported
Stryker disclosed that the attack affected its internal digital infrastructure across multiple locations worldwide. The company activated its cybersecurity response plan and began investigating the incident with external experts and advisors.
In an official statement, the company said it is continuing to resolve the disruption affecting its global network following the cyberattack.
The company added that there is no indication of ransomware or malware involved in the attack and that the incident appears to be contained within its internal Microsoft systems.
Employees instructed to disconnect devices
According to reports, employees were advised to disconnect company-issued devices from internal networks and avoid using them until systems were secured.
The disruption reportedly affected laptops, phones, and internal tools used by staff, forcing some employees offline while cybersecurity teams worked to contain the incident.
Stryker employs about 56,000 people across 61 countries, making the cyber incident one of the more significant disruptions affecting a global medical technology company in recent months.
Iran-linked hacker group claims responsibility
A hacking group known as Handala, believed to be linked to Iran, has claimed responsibility for the cyberattack.
The group reportedly said the operation was carried out as retaliation for geopolitical developments involving Iran, though authorities have not independently verified the claim.
Cybersecurity analysts have warned that the incident could reflect broader geopolitical tensions increasingly spilling into the cyber domain.
Orders and operations affected
The disruption has also impacted some business operations, including order processing, manufacturing coordination and internal communications systems.
However, Stryker has clarified that patient-related products and connected medical devices remain unaffected, and the company continues to support hospitals and healthcare providers while systems are restored.
The company said it is working to bring its electronic ordering systems and internal networks back online as quickly as possible while continuing to investigate the breach.
Recovery timeline still unclear
Stryker has not yet provided a timeline for full recovery of its systems.
The company said its teams are still assessing the operational and financial impact of the cyberattack while restoring services and strengthening security measures.
Cybersecurity experts say the incident highlights the growing risk of cyberattacks targeting major healthcare and medical technology companies, whose operations play a critical role in global healthcare supply chains.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
