Excerpt from The Record from Recorded Future News Article, Published on Jun 30, 2025.
Swiss nonprofit health organization Radix has confirmed it was targeted in a ransomware attack carried out by the Sarcoma group earlier this month. Based in Zurich, Radix operates numerous health promotion programs and online counseling services, including platforms on behalf of Swiss federal health offices. The organization stated that the Sarcoma ransomware gang had breached its systems and published stolen data on a leak site. While the full scope of the breach remains under investigation, Radix acknowledged that various files were encrypted during the cyberattack and access to affected systems was revoked immediately upon discovery. The nonprofit has reassured stakeholders that it can restore the encrypted data using backups, but it has not disclosed whether ransom negotiations were initiated with the attackers.
According to the Swiss government, several federal agencies are clients of Radix, though it emphasized that Radix does not have direct access to government systems. Switzerland’s public health authority also clarified that Radix’s platforms SafeZone and StopSmoking, which offer anonymous online counseling, were not impacted, as they are hosted separately from the core infrastructure affected by the attack. The Sarcoma group, which first appeared in October 2024, claimed to have stolen 2 terabytes of data from Radix and demanded payment within a week to avoid public exposure. Known for using double extortion tactics—encrypting data and threatening to leak it—Sarcoma has previously targeted global organizations, including Taiwan-based manufacturer Unimicron.
Security researchers believe Sarcoma may operate from Eastern Europe, though its exact origins remain unclear. While Radix has not yet disclosed the nature of the compromised data, officials have stated there is currently no evidence that highly sensitive information was leaked. The breach underscores growing concerns around cyberattacks targeting nonprofit healthcare organizations like Radix, which manage critical and often sensitive services while operating with limited security resources.
To delve deeper into this topic, please read the full article The Record from Recorded Future News.
