US seizes Iranian hacker group's websites following major data breach at Stryker
On March 20th authorities seized four domains linked to the Iran-backed hacktivist collective Handala, which recently claimed responsibility for a destructive attack on medical technology giant Stryker that wiped approximately eighty thousand devices while leaking sensitive data about US residents and Israeli figures targeted by psychological operations.
Key Points
-
1The FBI and US authorities seized multiple websites linked to Iran-backed hacktivist group 'Handala' following their cyberattacks on U.S.-based targets.
-
2This action follows the only known significant major cyberattack against a large American company since tensions escalated in February, involving medical tech giant Stryker which lost approximately 80% of its devices online.
Developments
Perspectives
US authorities have seized four domains linked to Iran-backed hacker group 'Handala', accusing it of running cyber-enabled psychological operations and leaking sensitive data targeting US citizens.
— [Mar 20, 13:05] US strikes back at Iran-linked hacking group (Indiatoday.in)The FBI announced the seizure of multiple domains linked to Iranian intelligence that were used for active attacks on Stryker and targeted regime dissidents in both Syria and Iraq.
— [Mar 20, 08:01] FBI update on Iran-linked hackers who brought down US largest medical device company (Timesofindia.indiatimes.com)The Handala group claimed responsibility for the only known significant cyberattack against a U.S. private sector entity since hostilities began in February.
— [Mar 19, 20:54] The FBI appears to have seized website of Iran-linked hacker (NBC News)Following Stryker's destructive attack that wiped approximately 80,000 devices and caused over $3 billion USD loss in production downtime.
— [Mar 19, 26:54] FBI seizes Handala data leak site after cyberattack (Bleepingcomputer)"Handala" is a pro-Iranian hacktivist group that claimed responsibility for the destructive attack on Stryker and has been active in Syria since at least February.
— [Mar 19, 26:54] FBI seizes Handala data leak site after cyberattack (Bleepingcomputer)US authorities seized four domains linked to Iran-backed hacker group Handal for allegedly conducting cyber-enabled psychological operations against US officials. These groups are accused of leaking sensitive data targeting Israeli figures, dissidents, journalists, executives from a defense firm, and Stryker employees while threatening those perceived as enemies of the Iranian regime.
The US FBI announced it seized four domains linked to Iran's Ministry of Intelligence (MOIS) that were used by Iranian intelligence groups like Handala for cyberattacks on Stryker, data thefts, and death threats against dissidents in March 2026. These operations included psychological tactics such as claiming credit for hacks while posting stolen information and calling for the killing of journalists, regime opponents, Israelis, and US residents.
The FBI seized Handala RedWanted, an Iran-linked hacker group's website that claimed responsibility for disrupting U.S.-based company Stryker in a cyberattack since February. The site was replaced with logos of federal agencies after law enforcement determined it facilitated malicious activities on behalf or coordination with foreign state actors.