The Swiss government has revealed that sensitive data belonging to various federal offices was compromised in a ransomware attack targeting the third-party organization Radix. The breach, attributed to the Sarcoma ransomware group, has led to the publication of stolen data on the dark web, prompting a nationwide investigation.
In an official statement, the Swiss government confirmed that Radix, a Zurich-based non-profit dedicated to health promotion, fell victim to the attack, which began on June 16. Radix serves multiple federal offices and conducts projects commissioned by the Swiss federal government, cantonal and municipal authorities, alongside other public entities.
The Sarcoma ransomware group, known for its aggressive tactics, reportedly accessed Radix’s systems using a combination of phishing and exploitation of vulnerabilities. Following the attack, the group managed to leak approximately 1.3TB of sensitive data, comprising document scans, financial records, contracts, and internal communications, on its dark web portal.
In response to the breach, the affected parties have been notified, and the Swiss National Cyber Security Centre (NCSC) is actively analyzing the implications of the data leak. Authorities and Radix are advising individuals who may have been affected to remain vigilant against potential identity theft and scams that could exploit their personal information.
This incident adds to a troubling history of cyberattacks targeting Swiss governmental bodies, as seen in a similar breach last year involving third-party software provider Xplain, which resulted in the exposure of over 65,000 sensitive documents. The need for enhanced cybersecurity measures continues to be underscored in light of such recurrent threats.