OT Insights Center80K Stryker Devices Wiped Following Iran-Attributed Attack

80K Stryker Devices Wiped Following Iran-Attributed Attack

Stryker produces medical devices. An Iran-attributed attack erased 80,000 corporate and personal devices (cell phones? laptops?) as a result of an intrusion into the Microsoft cloud and an instruction from that cloud to erase / reset the devices.
Picture of Andrew Ginter

Andrew Ginter

https://www.bleepingcomputer.com/news/security/stryker-attack-wiped-tens-of-thousands-of-devices-no-malware-needed/

Stryker’s product shipping has stopped for now, but it is not clear yet whether manufacturing was also impaired. This is the kind of attack I’ve worried about for years – bad guys who get into IT or industrial cloud systems can wind up with the ability to affect thousands of devices via their encrypted cloud connections, in what might otherwise be heavily-defended sites. 

Given the data available today, we will probably count this incident in next year’s OT Cyber Threat Report – we count incidents in the public record in manufacturing, heavy industry, critical industrial infrastructure and large building automation systems (eg: data centers). This year’s report is about to release – you can request your copy here.

About the author
Picture of Andrew Ginter

Andrew Ginter

Andrew Ginter is the most widely-read author in the industrial security space, with over 35,000 copies of his three books in print. He is a trusted advisor to the world's most secure industrial enterprises, and contributes regularly to industrial cybersecurity standards and guidance.
Share

Trending posts

Stay up to date

Subscribe to our blog and receive insights straight to your inbox

Tags

[OK] Row 1: #27754 ADAPTIT S.A. [OK] Row 2: #13384 Alstom [OK] Row 3: #4033 Amitec [OK] Row 4: #4118 AspenTech [OK] Row 5: #4019 Atlantic Data Security [OK] Row 6: #944 AVEVA [OK] Row 7: #20429 AXYS [OK] Row 8: #13392 Calibr8 Systems [OK] Row 9: #33912 Capula Limited [OK] Row 10: #12033 Carahsoft [OK] Row 11: #4112 CyberArk [OK] Row 12: #4124 Cybergym [OK] Row 13: #4109 CyberX [OK] Row 14: #4100 Cylus [OK] Row 15: #4130 Dragos [OK] Row 16: #4045 Ecubix [OK] Row 17: #1080 Emerson [OK] Row 18: #33078 ER-TLC [OK] Row 19: #4060 FIA Integra [OK] Row 20: #4105 Forescout [OK] Row 21: #28170 Fortinet, Inc. [OK] Row 22: #13388 GE Vernova [OK] Row 23: #4040 Help AG [OK] Row 24: #33106 Hopf Vertriebsgesellschaft mbH [OK] Row 25: #4091 Industrial Defender [OK] Row 26: #13169 INTEC S.A. [OK] Row 27: #4053 INTECH [OK] Row 28: #4127 Nozomi Networks [OK] Row 29: #4115 Oracle [OK] Row 30: #26378 Process Safety Solutions [OK] Row 31: #1074 Resec [OK] Row 32: #1065 Schneider Electric [OK] Row 33: #4026 SecuriOT [OK] Row 34: #953 Siemens Energy [OK] Row 35: #11967 SmarterBuild Inc. [OK] Row 36: #33192 Sophlee Limited [OK] Row 37: #4133 Splunk [OK] Row 38: #12003 Technomak [OK] Row 39: #4079 Tenable [OK] Row 40: #4068 Terilogy [OK] Row 41: #1072 Toshiba [OK] Row 42: #4057 Vara [OK] Row 43: #12006 Watchdog Cyber [OK] Row 44: #1078 Yokogawa Electric Done. Total: 44, Updated: 44, Skipped: 0
Book a Demo