{"id":195325,"date":"2026-03-12T18:43:00","date_gmt":"2026-03-12T22:43:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/12\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt\/"},"modified":"2026-03-12T18:45:10","modified_gmt":"2026-03-12T22:45:10","slug":"stryker-cyber-attack-raises-concerns-for-state-and-local-govt","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/12\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt\/","title":{"rendered":"Stryker Cyber Attack Raises Concerns for State and Local Govt."},"content":{"rendered":"<p><a href=\"https:\/\/www.govtech.com\/security\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt\">Stryker Cyber Attack Raises Concerns for State and Local Govt.<\/a><\/p>\n<p><a href=\"https:\/\/www.govtech.com\/security\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt\">https:\/\/www.govtech.com\/security\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-12 18:43:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.govtech.com\">www.govtech.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>                                    State, local, tribal and territory (SLTT) governments continue to raise questions about what effects the war in Iran could have on U.S. cybersecurity, and on Thursday discussed takeaways from the March 11 cyber attack on Stryker.The attack, confirmed as a global disruption to Stryker\u2019s Microsoft environment and claimed by Iran-linked Handala, was a touchpoint for those on a Thursday call with the Multi-State Information Sharing and Analysis Center (MS-ISAC). Cybersecurity advisers have been taking the lead on membership calls to address concerns stemming from the Iran war.MS-ISAC analysts said afterward that the Stryker attack was of concern for various reasons. Iranian and Iran-linked hackers often attack the health-care sector, in which SLTTs have ownership. Those hackers also target public schools and municipally owned critical infrastructure.Specific to the Stryker attack, a data theft and wiping attack, there were concerns about the LIFENET system that EMS and health-care workers use to transmit incoming patient data to hospitals, do remote consultations and manage fleets, among other functions. Stryker said that the system \u201ccontinues to function normally with no impact from the disruption\u201d although some \u201cvendors and hospital systems may have temporarily paused transmissions.\u201dMobile devices also factor into the attack, The HIPPAA Journal reports, and Stryker has 56,000 employees. It\u2019s possible that the attackers accessed the company\u2019s Active Directory services and used the Microsoft endpoint management tool Intune to wipe devices. With that in mind, Randy Rose from the Center for Internet Security (CIS) advised that organizations using Intune should review access policies as outlined on the Microsoft Learn pages for Intune and confirm they have the correct configurations.\u201cIf people are really concerned about mobile device management, that\u2019s a great resource for them,\u201d he said. \u201cIt\u2019s fairly straightforward and easy to follow. The challenge a lot of SLTT organizations have is that they\u2019re resource strapped. They may have something like this deployed to do mobile device management, but they may not be experts in configuration. So \u2026 they may be set up with a default policy \u2026 but not gone in and addressed specific controls.\u201dRose and TJ Sayers, senior director of threat intelligence at CIS, give presentations during these MS-ISAC briefings \u2014 called \u201csnap calls\u201d \u2014 and fielded questions after they presented Iran-related cybersecurity developments. They said Iranian-backed hackers and proxy hacktivists ramp up political attacks closer to election season, but that all public-sector entities are potential targets.Organizations should maintain data backups in case of theft or data wiping and keep them separated from the network, Sayers said. Also, secure any public-facing systems including Internet protocol cameras, since threat actors have been targeting them in the Middle East and other war zones.\u201cA lot of organizations are using some type of IP-based cameras for security purposes, so there was a lot of concern around that as well,\u201d he said. \u201cWhat we encourage folks to do to address the wiper activity and the IP camera-related things is patch publicly facing services \u2014 that could be your mail server, your firewall, a VPN connection \u2026 or a camera like that.\u201dFor coverage on MS-ISAC\u2019s March 6 snap call, read this piece from our sister publication Governing.<\/p>\n<p>                    Rae D. DeShong is a Texas-based staff writer for Government Technology and a former staff writer for Industry Insider \u2014 Texas. She has worked at The Dallas Morning News and as a community college administrator.<\/p>\n<p>                See More Stories by Rae D. DeShong<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Stryker Cyber Attack Raises Concerns for State and Local Govt. https:\/\/www.govtech.com\/security\/stryker-cyber-attack-raises-concerns-for-state-and-local-govt Publish Date: 2026-03-12 18:43:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":195326,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/erepublic.brightspotcdn.com\/dims4\/default\/bcaaf6c\/2147483647\/strip\/true\/crop\/1000x486+0+90\/resize\/1440x700!\/quality\/90\/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2F75%2F64%2F8d7541f87f71705204f22b05f168%2Fcampus-network-security.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24],"class_list":["post-195325","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195325"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=195325"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195325\/revisions"}],"predecessor-version":[{"id":195327,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/195325\/revisions\/195327"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/195326"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=195325"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=195325"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=195325"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}