By Zack Whittaker
Publication Date: 2026-03-19 15:08:00
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned companies to secure systems for managing their fleets of employee devices after pro-Iran hackers broke into medical tech giant Stryker and mass-wiped thousands of its phones, tablets, and computers.
The agency said on Thursday that it was urging companies to take action and confirmed it was aware that hackers used their access to Stryker’s Windows-based network to misuse its device endpoint systems, causing ongoing outages to the company’s global operations.
Among the advice, CISA said network administrators should ensure that certain user accounts that have access to systems like Microsoft Intune, which Stryker uses to remotely manage its employees’ devices, can only make sensitive or high-impact changes (such as wiping devices) with a second administrator’s approval.
Stryker, which develops medical devices and equipment for hospitals, confirmed on March 11 that it had been hacked, saying…