2 hours ago
1 ARTICLE AD
boliviainteligente / Unsplash
Microsoft has shipped one of the most practically useful security updates in recent memory, and if you work in an environment where Remote Desktop files get passed around regularly, this one is worth paying attention to. The April 2026 cumulative updates for both Windows 10 and Windows 11 bring a set of new protections designed to stop attackers from using RDP files as a backdoor into your system.
The problem with RDP files
Remote Desktop Protocol files are a staple in enterprise environments. They let admins preconfigure connections to remote systems, which sounds harmless enough until you realize that the same functionality can be weaponized fairly easily. Open the wrong RDP file and your device can silently connect to an attacker-controlled server, handing over access to your local drives, clipboard contents, and authentication credentials without you ever knowing it happened.
Adobe Stock Image
This is not a theoretical threat either. The Russian state-sponsored hacking group APT29 has already used exactly this technique in real-world phishing campaigns, using rogue RDP files to quietly siphon data and credentials from victims. The attack is effective precisely because it does not look suspicious on the surface. It is just a file, and files feel safe.
If the RDP file is unsigned, Windows displays a “Caution: Unknown remote connection” warning and marks the publisher as unknown. That is Microsoft’s way of telling you there is no way to verify who created the file or what it actually does. Even if the file is digitally signed, Windows still prompts you to verify the publisher’s legitimacy before connecting. Signing a file does not automatically make it trustworthy, and Microsoft is sensibly not treating it as though it does.
What Microsoft has changed
The new protections work in a few layers. The first time you open an RDP file after installing the update, Windows displays a one-time educational prompt that explains what RDP files actually do and the risks. You acknowledge it, and press OK.
V2 Cloud
From that point on, every RDP file you attempt to open will trigger a security dialog before any connection is established. That dialog tells you whether the file has been digitally signed by a verified publisher, shows you the address of the remote system you are about to connect to, and lists every local resource that the file is trying to redirect, including drives, clipboard access, and connected devices. Crucially, all those redirections are off by default, meaning nothing is shared unless you actively choose to allow it.
Although these protections only kick in when you open an RDP file directly. Connections made through the Windows Remote Desktop client itself are not affected by this update, so the experience there remains unchanged. Administrators who need to temporarily disable these warnings can do so via a registry key, but given the history of RDP file abuse in real attacks, leaving the protections in place is strongly recommended. This is one of those cases where the inconvenience of an extra dialog is very much worth the security benefit it provides.
Shimul is a contributor at Digital Trends, with over five years of experience in the tech space.
Google is expanding Personal Intelligence to Gemini users globally and it’s a huge shift
Free users, your turn with Personal Intelligence is coming very soon.
If you have been waiting for Gemini to actually feel like it knows you, your wait is almost over. Google’s Personal Intelligence, which launched earlier this year for paid US subscribers, is now rolling out globally.
What is Gemini Personal Intelligence and what can it do?
Google app just launched on Windows, and it wants to pull a Spotlight trick from Macs
One shortcut, every answer: Google brings its full search power to Windows without asking you to open Chrome, and it is heavily inspired by Mac’s Spotlight search.
Google has planted its flag on Windows territory. The Google app for desktop is now globally available in English for Windows users, graduating from its experimental phase on Search Labs.
The browser tab we reflexively open to use Google every five minutes now has a faster, more efficient replacement sitting on the desktop.
You can now save and reuse Gemini prompts in Chrome with the new Skills feature
Google just turned your Gemini prompts into one-click browser superpowers.
If you have ever typed the same AI prompt into Gemini multiple times across different tabs, you know how tedious that gets. Google has now solved that problem by launching a new feature called Skills in Chrome. It lets you save your most useful Gemini prompts and run them again instantly with a single click.
So what can I do with Skills in Chrome?
