Iran-Linked Cyberattacks Pose Growing Threat to Ireland and US Companies
Cybersecurity officials in Ireland are warning of a heightened, though not dramatic, risk of cyberattacks linked to Iran, following a recent attack on US-based medical technology firm Stryker that impacted its operations in Cork, Ireland. The incident underscores the interconnectedness of global systems and the potential for attacks originating abroad to have domestic consequences.
Stryker Cyberattack: A Wake-Up Call
On March 11, 2026, Iranian-linked hacking group Handala claimed responsibility for a destructive cyberattack against Stryker, a $22 billion medical device company . The group compromised Stryker’s Microsoft Intune administrator account and initiated factory resets on over 200,000 corporate devices across 79 countries .
The attack significantly disrupted operations, including the Lifenet platform used by Maryland paramedics to transmit ECG readings to hospitals in real-time. The outage forced paramedics to revert to 1980s-era communication methods, relaying ECG information via radio .
Ireland’s Cybersecurity Chief Addresses the Threat
Richard Browne, Director of the National Cyber Security Centre (NCSC) in Ireland, stated that the ongoing conflict involving Iran has increased the cyber risk level for Ireland, but not to an alarming extent . He emphasized Ireland’s reliance on global networks, noting that an incident affecting a US entity, like Stryker, can have direct repercussions within the country .
Browne indicated that further Iran-linked cyberattacks are “entirely possible,” including potential hacktivism and denial-of-service attacks. However, he believes direct targeting of critical infrastructure or government entities in Ireland remains “not particularly likely” .
He anticipates that Iranian hackers will continue to target US companies, which could subsequently create challenges for operations in Ireland .
Increased Cybercriminal Activity
Raluca Saceanu, CEO of cybersecurity company Smarttech247, reported a significant increase in cybercriminal activity since the escalation of the Iran conflict. This includes a surge in phishing attempts, credential theft, exploitation of system vulnerabilities, and the spread of online propaganda . Saceanu noted this activity aligns with patterns observed during previous periods of geopolitical tension .
Broader Cyber Warfare Context
The cyber conflict extends beyond Iran. Prior to the commencement of Operation Epic Fury, US cyber teams reportedly disrupted Iranian communications networks. Reports indicate that Israel utilized hacked CCTV and traffic cameras to monitor Iranian leaders .
The Irish Cybersecurity Chief issued the alert on potential Iran-linked cyber-attacks .