In a statement on Monday, the Zurich-based agency — which runs health promotion programs and online counseling services — said that the threat actor known as Sarcoma had published data stolen from its systems on a leak site. In a separate statement last week, Switzerland’s public health authority said that the anonymous online counseling platforms SafeZone and StopSmoking — which Radix operates on its behalf — were not directly affected by the cyberattack, as they are hosted outside of the nonprofit’s core infrastructure. Information about the alleged Radix breach first emerged earlier in June, when the Sarcoma group claimed to have exfiltrated 2 terabytes of the organization’s data. “There is currently no indication that particularly sensitive data has been affected by the cyberattack,” the Swiss Federal Office of Public Health said. The agency said that upon discovering the attack, it immediately revoked access to the affected data and confirmed that various files had been encrypted in the breach. The Swiss nonprofit health organization Radix has confirmed that its systems were breached by a ransomware group earlier this month. According to previous research, Sarcoma uses a double extortion model, encrypting victims' data and threatening to leak it on the dark web if ransom demands are not met. While the exact origins of Sarcoma remain unclear, security researchers believe the group may be linked to cybercriminals operating out of Eastern Europe. Radix has not specified what kind of data was affected but said it would be able to restore it from backups.
This Cyber News was published on therecord.media. Publication date: Mon, 30 Jun 2025 13:35:03 +0000