The Iran-linked Handala hacking group claims to have wiped approximately 200,000 devices belonging to medical technology giant Stryker and exfiltrated 50 terabytes of data across 79 countries, according to SecurityWeek [1]. If confirmed, it would rank among the largest destructive cyberattacks ever conducted against a single corporation.

Stryker, a Fortune 500 company that manufactures surgical equipment, orthopedic implants, and hospital bed systems used in thousands of healthcare facilities worldwide, has not yet confirmed the full scope of the breach [2]. The company said in a brief statement that it detected unauthorized access to certain systems and activated its incident response protocols. The FBI and CISA are investigating.

Handala, which has previously targeted Israeli infrastructure, posted screenshots on Telegram purporting to show wiped server arrays and stolen internal documents including patient data, proprietary device firmware, and employee records [1]. Cybersecurity researchers who reviewed the posted evidence told Reuters the screenshots appear consistent with a large-scale wiper deployment, though the 200,000-device figure has not been independently verified [2].

The attack raises urgent questions about the vulnerability of medical device supply chains. Stryker's products are embedded in operating rooms and intensive care units globally, and a wiper attack on networked hospital equipment could have life-threatening consequences if devices were bricked mid-procedure.

CISA issued an advisory urging healthcare organizations using Stryker equipment to isolate affected systems and check for indicators of compromise published in its alert bulletin.

-- DAVID CHEN, San Francisco