A recent cyberattack on medical technology giant Stryker has been attributed to Iranian hackers, who likely utilized malware-stolen credentials to gain unauthorized access to the company's systems. The Handala hacking group is believed to be responsible for the breach, which has prompted Stryker to undertake efforts to restore affected systems. The incident highlights the evolving nature of cyber threats, as attackers increasingly employ sophisticated tactics to compromise sensitive information. The use of stolen credentials, in particular, poses a significant risk to organizations, as it can be difficult to detect and mitigate such attacks. This breach may have downstream effects on the regulatory and supply-chain landscape, particularly given the involvement of a nation-state actor1. As a result, practitioners should be vigilant in monitoring for similar threats and implementing robust security measures to prevent credential-based attacks, which can have far-reaching consequences for their organizations.