AKIRA Ransomware Group Lists Swiss Radiology Network Réseau Radiologique Romand as Victim

The AKIRA ransomware operation has listed Réseau Radiologique Romand, a major radiology consortium operating in French-speaking Switzerland, as a confirmed victim on its dark web leak site. The listing signals that sensitive medical imaging data may have been compromised in the attack, raising serious concerns about patient privacy and healthcare sector cybersecurity vulnerabilities in the region.

Réseau Radiologique Romand operates as a collaborative network of radiology practices serving patients across the cantons of Vaud, Geneva, Neuchâtel, and Jura. The group provides diagnostic imaging services including MRI, CT scans, X-rays, and ultrasound across multiple facilities. Healthcare providers in this network handle highly sensitive personal health information, making any data breach particularly consequential under Swiss data protection regulations. The inclusion on AKIRA's victim portal suggests the threat actors have either encrypted the network's systems or exfiltrated data—or both—consistent with AKIRA's established double-extortion tactics.

AKIRA has emerged as a significant ransomware-as-a-service threat since its initial emergence in 2022, consistently targeting healthcare, education, and critical infrastructure sectors. Swiss healthcare institutions have faced increasing pressure from ransomware groups in recent years, with authorities warning that medical data commands premium prices on underground markets. The Federal Office of Cybersecurity (NCSC) has previously advised healthcare organizations to strengthen incident response capabilities, though no official confirmation of the attack or associated regulatory filings has been publicly acknowledged at this time.