Iran-Linked Hackers Strike Michigan Tech Giant Stryker, Wiping Employee Devices in First Major U.S. Cyber Hit of the War By Thomas Smith, 2 hrs ago Better Better America Follow https://img.particlenews.com/image.php?url=4HzyI5_19pPIArI00 In a significant escalation of cyber warfare, an Iran-linked hacking group has claimed responsibility for a disruptive attack on Michigan-based medical technology giant Stryker. The breach, which utilized corporate management tools to remotely wipe employee devices, marks the first major successful Iranian cyber operation against a U.S. firm since the recent outbreak of regional conflict. The group, known as Handala, announced the exploit via Telegram and X (formerly Twitter). Cybersecurity experts at Sophos have tied Handala to Iran’s Ministry of Intelligence, noting a shift from previous “hacktivism”—which largely focused on websitedefacement—to more destructive “wiper” tactics designed to paralyze corporate infrastructure. The “Intune” Infiltration Evidence suggests the attackers gained unauthorized access to Stryker’s Microsoft Intune account, a cloud-based endpoint management solution used to oversee corporate mobile devices and laptops. Once inside the console, the hackers reportedly triggered a “remote wipe” command—a security feature typically reserved for lost or stolen hardware—effectively resetting employee phones and computers to factory settings. “They seem to have obtained access to the Microsoft Intune management console,” said Rafe Pilling, Director of Threat Intelligence at Sophos. “Looks like they triggered [the remote wipe] for some or all of the enrolled devices.” One Stryker employee, speaking on the condition of anonymity, confirmed that work-issued phones ceased functioning Wednesday, bringing internal communications and operations to a sudden standstill.