Stryker begins restoring ordering, shipping systems after cyberattack - Cybersecurity Dive

Stryker begins restoring ordering, shipping systems after cyberattack The medtech company believes the cyberattack has been contained and is now bringing systems back online. Published March 18, 2026 Ricky Zipp Senior Editor Share License Add us on Google Stryker’s office in Salt Lake City, Utah, on May 9, 2023. Alamy First published on Stryker believes the cyberattack that hit the company last week has been contained. The medtech company is now in the restoration process, which is “progressing steadily,” according to a statement emailed to MedTech Dive on Tuesday. Stryker will continue to provide updates as the restoration process continues. The company did not provide a timeline for when it expects operations to be fully restored. “We are actively bringing our systems back online and are prioritizing systems that directly support customers, ordering and shipping,” a Stryker spokesperson said. Stryker suffered a cyberattack on March 11, leading to a global network disruption of the company’s Microsoft environment. The attack impacted ordering processing, shipping and manufacturing. The attack has been claimed by an Iran-linked threat actor tracked as Handala, according to Check Point Research. The group claims to have wiped information from thousands of servers and mobile devices and to have stolen 50 terabytes of data. Stryker said that the attack did not affect any of its products, including connected products. All Stryker products remain safe to use, the spokesperson said. In a March 11 filing with the Securities and Exchange Commission, Stryker said that it did not know the full scope of the attack’s impact, including financial and operational effects. The company added that it has not determined whether the attack will have a material impact. Dave Nathans, Stryker’s chief information security officer, provided an update on March 12 to customers and other members of the cybersecurity community about the attack, according to a separate filing with the SEC. Stryker is coordinating with appropriate authorities and external cybersecurity experts as part of its response plan. RECOMMENDED READING Stryker investigating cyberattack that caused widespread outage MedTech Dive Stryker’s manufacturing, shipping disrupted after cyberattack MedTech Dive Stryker attack raises concerns about role of device management tool By David Jones • March 16, 2026 Add us on Google Share PURCHASE LICENSING RIGHTS Filed Under: Cyberattacks