Cybercrime,
Data Breach Notification,
Data Security
TriMed Joins the List of Medical Device Companies Targeted in Recent Cyberattacks
TriMed, a California-based manufacturer renowned for its implantable orthopedic devices, recently disclosed a significant cybersecurity breach, marking it as the latest victim in a concerning trend of cyberattacks targeting medical device companies. This event surfaces amidst a slew of similar incidents that have sent ripples through the healthcare sector in recent weeks.
The announcement from TriMed, made on a Friday, detailed that their cybersecurity breach followed closely on the heels of notable attacks including one perpetrated by Iranian hacktivists against Stryker, a prominent Michigan-based medtech firm. Stryker’s systems were reportedly compromised, leading to extensive data loss and theft. Additionally, a data breach was reported by UFP Technologies, a Massachusetts-based producer of single-use medical supplies, earlier this year.
Upon detecting suspicious activities within its IT infrastructure in 2025, TriMed immediately instigated an internal investigation. Results revealed that unauthorized access had likely occurred during an eight-day window from September 13 to September 21, 2025. The company did not specify the exact date when these irregular activities were first observed but confirmed that certain files, including order forms and invoices, had been accessed without permission.
Information contained within the compromised files included not only details related to the medical devices but also personal data of individuals who received these products. In some cases, documents contained sensitive elements like names, birth dates, medical record numbers, and specifics regarding the implanted devices, including the parts and the name of the ordering surgeon. However, TriMed confirmed that no Social Security numbers or financial data, such as bank accounts or credit card information, were involved in the breach.
The company has yet to disclose how many individuals were affected by this troubling breach and has not responded to requests for further information on the incident. TriMed has accordingly taken steps to report this incident to law enforcement and is implementing measures to bolster its data security frameworks. These measures include enhancing existing security controls and threat detection processes, as well as integrating a global security operations center aimed at preventing similar incidents in the future.
The Growing Threat Landscape
The healthcare sector, particularly manufacturers of medical devices, frequently handle vast amounts of sensitive data, including intellectual property, client details, and patient information. This data makes them prime targets for cybercriminals seeking to exploit vulnerabilities. Furthermore, disruptions to IT systems can lead to significant supply-chain complications, particularly in manufacturing and distribution of vital medical devices necessary for surgeries and treatments.
Recently, the Iranian hacktivist group Handala claimed responsibility for the March 11 attack on Stryker, boasting of the permanent deletion of more than 12 petabytes of data. The incident highlighted the pressing challenges medical device makers face in safeguarding sensitive information. In response to the attack, Stryker emphasized that they are in close communication with various government entities, including the FBI and CISA, to mitigate the consequences of such cyber threats.
In a related incident, UFP Technologies reported a cyber breach on February 14, disclosing the theft or destruction of company data to the U.S. Securities and Exchange Commission. However, they have not provided any updates on the current situation relating to that breach.
Experts highlight that attacks on key players within the healthcare supply chain can severely affect patient care and the operational capabilities of healthcare providers. Scott Gee, deputy national cyber risk adviser at the American Hospital Association, pointed out that risks associated with third-party providers are increasingly significant. He emphasized the need for hospitals to coordinate with these suppliers to develop effective contingency plans to mitigate potential disruptions to healthcare delivery.
Strengthening Cyber Defenses
As cyber threats continue to evolve, it is crucial for medical device manufacturers to enhance their defenses against potential incidents. Axel Wirth, a chief security strategist at MedCrypt, stresses the importance of adhering to best practices in cybersecurity, which include segregating various operational systems. By doing so, if one system is compromised, it would not necessarily jeopardize others.
Developing robust security infrastructures is essential for areas critical to operations, including production and logistical support. Moreover, companies could benefit from implementing advanced monitoring solutions tailored to track medical device traffic and operational systems.
In conclusion, as the healthcare sector grapples with the increasing frequency of cybersecurity threats, continuous improvement of cybersecurity practices among medical device manufacturers is essential. The need for resilience, rapid recovery, and effective data management is paramount to ensure uninterrupted patient care and protect sensitive information from being compromised.