Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

RDP hijacking

Russian-origin CTRL toolkit spread through malicious Windows shortcut files, researchers say

Cybercrime, Research, Risk

March 30, 2026

Researchers say a Russian-origin toolkit called CTRL was spread through malicious Windows shortcut files disguised as private key folders. The malware adds phishing, keylogging, RDP hijacking and reverse tunneling while limiting network traces.

About
Editorial Policy
Privacy
Contact