Radix, a Swiss technology solutions provider said it suffered a significant ransomware attack that exposed sensitive data from various federal offices.
Based in Zurich, Radix is a non-profit organisation committed to advancing public health. It operates eight specialised competence centres that deliver projects and services on behalf of the Swiss federal government, cantonal and municipal authorities, as well as other public and private partners.
In a data security incident notice published on its website, Radix said the Sarcoma hacker group recently attacked its internal network, encrypted critical systems and stole confidential data. The company added that the hacker group leaked the stolen data online on June 29.
🚨Cyber Attack Alert ‼️
🇨🇭Switzerland – RADIX Swiss Health Foundation
Sarcoma ransomware group claims to have breached RADIX Swiss Health Foundation.
According to their post, the cybercriminal group allegedly exfiltrated 2 TB of data.
The ransom deadline is set for July 26,… pic.twitter.com/FZqGCVOjiT
— Hackmanac (@H4ckmanac) June 19, 2025
On June 19, the Sarcoma ransomware group claimed responsibility for the cyber attack on Radix and listed it as a victim on its data leak site. The group claimed to have stolen 2TB of confidential data.
Radix said that immediately after detecting the network intrusion, the company launched an investigation, with assistance from external cyber security experts, to determine the scope of the incident.
Radix also alerted the relevant authorities—including the Federal Office for Cybersecurity, FDPIC, Zurich’s Data Protection Commissioner, and the Zurich City Police—and is actively working with them to address the incident swiftly.
“Access to the affected data was immediately revoked after the attack was discovered. A data leak was detected, and various data was encrypted. RADIX has all data in undamaged condition on backups. The exact method by which the attack occurred is currently under investigation,” Radix said.
“Affected individuals were personally informed if particularly sensitive personal data could have been affected. Based on current knowledge, there is no indication that sensitive data from partner organisations has been affected,” the company added.
Acknowledging the reports of the data security incident, in a press release, the Swiss Government said, “Investigations are currently under way to determine the specific units and data affected by the attack. As Radix has no direct access to Federal Administration systems, the attackers did not gain entry to these systems at any time.
“The NCSC is coordinating further investigations and measures within the Federal Administration. It is in continuous dialogue with Radix, as well as the prosecution authorities and the Federal Administration units affected by the attack, and will inform the public of further findings in due course.”
