AttackFeed by Joe Wagner | Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels  - The Hacker News

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels  – The Hacker News

Posted on By [email protected] (The Hacker News)
Attack Feeds

Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that’s distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders.
The CTRL toolkit, according to Censys, is custom-built using .NET and includes various executables” to facilitate credential phishing, keylogging, Remote Desktop Protocol (RDP) hijacking, and reverse tunneling  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | Palo Alto Networks’ Koi acquisition is all about keeping AI agents in check  - CyberScoop
Attack Feeds
Palo Alto Networks’ Koi acquisition is all about keeping AI agents in check  – CyberScoop
February 17, 2026
AttackFeed by Joe Wagner | Anti-DDoS Firm Heaped Attacks on Brazilian ISPs  - Krebs on Security
Attack Feeds
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs  – Krebs on Security
April 30, 2026
AttackFeed by Joe Wagner | Lloyds Group to Compensate 450,000 Customers After App Glitch  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
Lloyds Group to Compensate 450,000 Customers After App Glitch  – Hackread – Cybersecurity News, Data Breaches, AI and More
March 28, 2026
AttackFeed by Joe Wagner | ClickFix Attack Targets Devs with MacSync Malware via Fake Claude Tools  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
ClickFix Attack Targets Devs with MacSync Malware via Fake Claude Tools  – Hackread – Cybersecurity News, Data Breaches, AI and More
March 17, 2026