The Zurich-based non-profit health foundation Radix was hit by a ransomware attack that exposed the data of various Swiss federal offices. Sarcoma ransomware has released a 1.3TB archive of stolen data on its dark web data leak site.
The Swiss National Cyber Security Center (NCSC) issued a press release about a data theft and ransomware attack at Radix, a nonprofit organization that provides health education and promotion.
Radix’s customers include various federal offices. The NCSC is investigating to determine the specific units and data affected by the cyberattack.
“As Radix has no direct access to Federal Administration systems, the attackers did not gain entry to these systems at any time,” NCSC said.
Radix confirmed that the cyberattack happened on June 16th, 2025. The hackers have already released the data after ransom demands failed.
“Unfortunately, we must confirm that, despite high security standards and professional support, we fell victim to a cyberattack. Sarcoma published the stolen data on the leak page on June 29th, 2025,” Radix said in a statement.
It’s unclear how many individuals could be affected by this data heist, but Radix assures that they were personally informed.
“Based on current knowledge, there is no indication that sensitive data from partner organizations has been affected,” Radix added.
The organization said that it has backups for all the encrypted data, and it immediately revoked access to the data after the attack was discovered. It expects hackers might try to leverage the stolen data for possible phishing attacks, attempting to steal passwords, credit card numbers, or other sensitive information.
Swiss authorities did not specify how the hackers gained access to Radix’s systems. Investigations are underway.
After attackers gain unauthorized access to a company’s systems, the data is first stolen, then encrypted and used to blackmail the company. If the company does not pay, the attackers threaten to publish the stolen data. If the company still does not respond to the blackmail, the data is usually published piece by piece to increase the pressure.
To protect yourself from email phishing scams, make sure you're using a reliable antivirus that offers real-time web protection, scans attachments for malware, and blocks malicious links.
Your email address will not be published. Required fields are markedmarked