Stryker attack wiped tens of thousands of devices, no malware needed
Summary
A cyberattack on medical technology company Stryker remotely wiped tens of thousands of employee devices within its internal Microsoft environment. The attack did not involve traditional malware and targeted the company's infrastructure.
IFF Assessment
This event represents a significant attack that caused widespread disruption and data loss within a critical infrastructure organization, highlighting new methods of attack beyond traditional malware.
Defender Context
This incident demonstrates the potential for sophisticated attacks that can cause significant damage without relying on known malware signatures, emphasizing the need for robust endpoint detection and response (EDR) and strong identity and access management controls. Defenders should prepare for novel attack vectors that exploit administrative tools or misconfigurations to achieve wide-scale impact.