
Cyberattack on Radix: Federal Administration data also affected
Swiss Government
Press release
Published on 30 June 2025
Bern, 30.06.2025 -- The foundation Radix has been targeted by a ransomware attack, during which data was stolen and encrypted. Radix's customers include various federal offices. The data has been published on the dark web and will now be analysed by the relevant offices.
Radix, a non-profit organisation in the health promotion sector, has been targeted by a ransomware cyberattack. The attackers stole and encrypted data before publishing it on the dark web. Following an initial situation analysis, Radix informed the National Cyber Security Centre (NCSC).
Radix's customers include various administrative units of the Federal Administration. Investigations are currently under way to determine the specific units and data affected by the attack. As Radix has no direct access to Federal Administration systems, the attackers did not gain entry to these systems at any time.
The NCSC is coordinating further investigations and measures within the Federal Administration. It is in continuous dialogue with Radix, as well as the prosecution authorities and the Federal Administration units affected by the attack, and will inform the public of further findings in due course.
How ransomware attacks usually work
After the attackers gain unauthorised access to a company's systems, the data is first stolen, then encrypted and used to blackmail the company. If the company does not pay, the attackers threaten to publish the stolen data. If the company still does not respond to the blackmail, the data is usually published piece by piece to increase the pressure.
NEWSLETTER
|
Join the GlobalSecurity.org mailing list |
|
|