Andrew Northern describes CTRL as a new malware with extensive functionality, including locking a victim PC with Windows Hello and forcing valid credentials for persistence or lateral movement. Censys ARC says CTRL combines phishing, keylogging, RDP hijacking, and reverse tunneling.
CTRL: a new piece of malware that has a ton of functionality including locking the victims computer using Windows Hello
forces the victim to provide valid credentials to maintain persistence
a previously undocumented βππ§π₯πβ .NET access framework
combining phishing, keylogging, RDP hijacking, and reverse tunneling
Active infra. No public intel.
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.
β Back to Cyber Security