IE 11 Not Supported

For optimal browsing, we recommend Chrome, Firefox or Safari browsers.
Cybersecurity

Stryker Hack Contained as System Restoration Work Begins

Teams are working to restore normal operations after a suspected Iran-linked cyber attack disrupted global systems at Stryker Corp., a leading medical devices company based in Portage.

March 25, 2026 • 
Brad Devereaux, mlive.com
Hands typing on a laptop keyboard with lines of code on the screen.
(TNS) — Stryker teams are continuing to work on restoring normal operations after a cyber attack, the company said on Monday, March 23.

On March 11, a suspected Iran-linked cyber attack disrupted global systems at Stryker Corp., a leading medical devices company based in Portage.

“We believe the incident is contained, and we are prioritizing restoration of systems that directly support customers, ordering and shipping,” the company said on Monday.

“Our internal teams, in partnership with third-party experts, reacted quickly to not only regain access but to remove the unauthorized party from our environment,” Stryker said.

Staff and contractors reported the logo of an “Iran-linked hacking group” showed up on company devices, the Wall Street Journal said.

Early in the investigation, Stryker said it believed there was no indication of ransomware or malware.

The company worked with Palo Alto Networks Unit 42 and other experts to investigate.

The threat actor used a malicious file to run commands, allowing them to hide their activity while in the company’s systems, Stryker said.

“To be clear, this file was not capable of spreading — either inside or outside of our environment," Stryker said this week.

The investigation has not identified malicious activity directed toward customers, suppliers, vendors or partners, the company said.

Based on input from Unit 42, Stryker said the incident is contained and that analysis has not identified any evidence of the threat actor accessing customer, supplier, vendor or partner systems as a result of this incident.

“We are working closely with our global manufacturing sites as operations continue to stabilize,” Stryker said. “Manufacturing capability is ramping quickly as critical lines and plants are brought back online, prioritizing patient needs. This is a 24/7 effort and the first priority of our entire organization.”

The hack disrupted the company’s systems across the world.

Employees were out of work for over a week after the cyber attack, according to a Stryker employee.

Stryker reported $25.1 billion in global sales for 2025, Crain’s reports.

© 2026 Advance Local Media LLC. Distributed by Tribune Content Agency, LLC.

Tags:

Cybersecurity
Related Content
A robot holds its hands over a shield with a lock, cybersecurity illustration
Cybersecurity
Report: AI Drives Cyber Attacks That Unfold in Minutes
March 24, 2026
 · News Staff
The entrance to a building that says "Federal Communications Commission" over the doors..
Cybersecurity
Why Did the FCC Ban Wireless Router Imports?
March 24, 2026
A hacker typing on a keyboard.
Cybersecurity
Cyber Attack Continues to Paralyze Foster City, Calif.
March 24, 2026
Phishing,Concept,Background,,Phishing,Email,,Data,Breach,,Theft,,Steal.,Data
Cybersecurity
In Ohio County, Phishing Attack May Have Led to a Data Breach
March 23, 2026
A person wearing a headset and looking at a computer screen.
Cybersecurity
Maryland Workforce Agency Expands Cyber Training for Job Seekers
March 23, 2026
 · Rae D. DeShong
A photograph of the top of Worcester City Hall, looking down from Worcester Plaza.
Cybersecurity
Worcester, Mass., Relaunches Emergency Notification System
March 23, 2026
gov-footer-logo-2024.png
GT-footer-logo.png
II-footer-logo.png
NAV-footer-logo.png
CDG-footer-logo.png
CDE-footer-logo.png
CPSAI-footer-logo.png
EM-footer-logo.png