OrganisationGB

NHS Supply Chain

NHS England's centralised procurement body supplying medical devices and services to all NHS trusts.

Last refreshed: 17 April 2026 · Appears in 1 active topic

Key Question

How long were UK hospitals disrupted by the Stryker MDM wipe?

Timeline for NHS Supply Chain

#117 Apr

Issued disruption alert warning UK hospitals of Stryker ordering and invoicing degradation

Cybersecurity: Threats and Defences: Handala wipes 200,000 devices at Stryker

View full timeline →

Follow Cybersecurity: Threats and Defences →

Common Questions

What did NHS Supply Chain send hospitals about the Stryker hack?: NHS Supply Chain issued a disruption alert on 18 March 2026 warning UK hospitals that Stryker ordering, manufacturing and invoicing systems were degraded after the Handala MDM wipe, with restoration projected by 10 April.Source: NHS Supply Chain ICN
How long did the Stryker cyber attack disrupt the NHS?: UK trusts experienced degraded Stryker product access from 11 March to approximately 10 April 2026, a period of roughly three weeks.Source: NHS Supply Chain
What is NHS Supply Chain?: NHS Supply Chain is the centralised procurement body for NHS England, responsible for sourcing and delivering medical devices, consumables and services to NHS hospitals and trusts.

Background

NHS Supply Chain issued a disruption alert on 18 March 2026 after the Handala Hack group wiped up to 200,000 Stryker devices, warning UK hospitals that Stryker ordering, manufacturing and invoicing systems were degraded. Most Stryker product lines were projected to return to normal by 10 April 2026, with trusts reverting to paper-based inventory workflows in the interim.

NHS Supply Chain manages procurement for all NHS hospitals and trusts in England, procuring products from hundreds of suppliers across medical devices, consumables and services. Its role makes it a critical node in the UK's healthcare supply chain and a notification nexus when any Major supplier experiences a cyber incident.

The Stryker disruption illustrates the downstream exposure NHS infrastructure faces from third-party supplier cyber incidents. NHS Supply Chain's alerting role sits between the affected US vendor and the UK clinical operations that depend on its kit; a faster reporting mandate under the Cyber Security and Resilience Bill would tighten the notification chain for future incidents of this type.

How the World Sees Them

NHS Trusts

Three weeks of degraded Stryker product access forced trusts back to paper workflows. The incident is a direct argument for auditing MDM posture of key device suppliers.

UK Government

NHS Supply Chain is a strategic infrastructure node; its role alerting trusts to the Stryker disruption is now a reference case for third-party cyber reporting.

Cyber insurers

Third-party supply-chain incidents reaching clinical operations are now an insurable risk with documented UK impact timelines.