The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. has issued an urgent warning for businesses to enhance the security of their systems managing employee devices. This advisory follows a breach by pro-Iranian hackers who infiltrated the medical technology firm Stryker, resulting in the mass deletion of data from thousands of its devices, including smartphones, tablets, and computers.
On Thursday, CISA confirmed that it was aware the hackers exploited Stryker’s Windows-based network to manipulate its endpoint management systems, which led to ongoing disruptions in the company’s global operations. As part of their recommendations, CISA advised network administrators to ensure that any user accounts with access to crucial management systems, like Microsoft Intune—used by Stryker for remote device management—should only perform high-stakes actions, such as data wiping, with the approval of a second administrator.
Stryker, a major player in the medical device sector, acknowledged a cyber incident on March 11, reporting significant global network disruptions. The firm clarified that while no malware or ransomware was deployed, the hackers leveraged their access to internal systems to remotely erase data from a large number of employee devices, impacting personal and company-owned gadgets linked to Stryker’s network.
Since the breach, Stryker has announced it has contained the attack and is working on restoring its systems. Although their medical devices are still functioning, critical operations related to supply, ordering, and shipping remain offline. The company has not specified a timeline for full recovery and has not responded to inquiries from TechCrunch.
The cyberattack was claimed by a group of pro-Iranian hacktivists known as Handala, who stated they acted in response to U.S. military actions that resulted in civilian casualties in Iran. They asserted that they had accessed and stolen large volumes of data from Stryker’s network, although they have not provided proof of this claim.
In a related development, the FBI has taken down the website associated with the Handala group, marking a significant response to their activities.
Fanpage:Â TechArena.au
Watch more about AI – Artificial Intelligence
