FBI Seizes Iranian Online Leak Sites After Stryker Hack

New Handala Site Is Also Available David Perera (@daveperera) • March 20, 2026

U.S. federal agents seized four web domains associated with Iranian hacking operations days after a threat actor going by Handala posted screenshots it said came from inside the IT systems of medical device manufacturer Stryker.

See Also: New Attacks. Skyrocketing Costs. The True Cost of a Security Breach.

Handala - widely suspected of being a front for Iranian intelligence - broke into the medical device maker's Active Directory on March 11, leading to a disruption in ordering and shipping that still persists (see: Health Sector Braces for Stryker Hack Supply Chain Shock).

It posted onto handala-hack.to evidence of the hack and asserted that it deleted 12 petabytes from Stryker systems. Now, the website displays a seizure notice left by the FBI and the Department of Justice.

Federal authorities additionally seized three other domains used by Iranian intelligence ...