First discovered in April 2025 after targeting five South Korean organizations, the Gunra ransomware has transformed from a localized threat into a full-fledged Ransomware-as-a-Service (RaaS) enterprise. By abandoning its original Conti-based code in favor of a custom-built encryptor, the syndicate has dramatically expanded its reach, claiming 32 victim companies as of March 2026. After a […]
The post Gunra Ransomware Evolves From Conti-Based Locker Into RaaS Operation appeared first on Cyber Security News.