Cyberattack

March 11 (UPI) — Medical device maker Stryker is experiencing a global tech issue Wednesday from a cyberattack by a group of pro-Iranian hackers.

Employees found their work devices locked up with the symbol of the hacker group Handala displayed on their screens. It is being described as a “wiper attack,” not meant to extort money but to cause maximum damage to Stryker’s systems.

Handala has claimed responsibility for the cyberattack in a social media post, writing that it is retaliation for the deadly strike on the Shajareh Tayyiba girls school in Minab, Iran.

“We announce to the world that, in retaliation for the brutal attack on the Minab school school and in response to ongoing cyber assaults against the infrastructure of the Axis of Resistance,” the post reads. “In this operation, over 200,000 systems, servers, and mobile devices have been wiped and 50 terabytes of critical data have been extracted.”

The cyberattack has not only impacted employees in the United States but also employees in Ireland.

“Stryker is experiencing a global network disruption to our Microsoft environment as a result of a cyberattack,” Stryker said in a statement. “We have no indication of ransomware or malware and believe the incident is contained. Our teams are working rapidly to understand the impact of the attack on our systems. Stryker has business continuity measures in place to continue to support our customers and partners.”

Stryker is headquartered in Portage, Mich., and employs 50,000 people worldwide, including about 1,000 at its headquarters. It manufactures an array of medical equipment including orthopedic implants, surgical instruments and imaging systems. It is one of the largest medical technology manufacturers in the world.

The headquarters closed for the day on Wednesday with signs posted on its doors warning workers not to access Stryker’s network, use its devices or connect to its WiFi.

Feb. 20 (UPI) — The University of Mississippi Medical Center closed its 35 clinics throughout Mississippi on Friday after being targeted in a ransomware attack.

Medical center officials also canceled all elective medical procedures that were scheduled for the day and rescheduled all but dialysis appointments at the medical center’s location in the Jackson Medical Mall in the state’s capital.

That medical center remained open and provided medical services on Friday. Hospital officials said they and federal law enforcement were in contact with those who carried out the ransomware attack.

“We continue to work with federal authorities and national experts in cyberattack response as we evaluate the extent of the attack and our next steps,” medical center officials said in a Facebook post Thursday.

“We expect this to be a multi-day event and will communicate helpful information when available.”

The university medical center’s hospitals and emergency departments also were open. Officials said they plan to announce any closures that might affect those healthcare service providers if it becomes necessary.

University officials also canceled all online classes Friday, but in-person classes were held.

University Vice Chancellor for Health Affairs LouAnn Woodward confirmed a ransomware attack affected the medical center’s key network systems, including Epic and its medical records.

Woodward said officials at the medical center shut down its IT systems out of precaution and do not know when the matter might be resolved.

In the meantime, doctors and medical center staff were using pen and paper while continuing to provide medical services for patients until the IT system is restored.

The university health clinics provide many services, including treating cancer and chronic pain.