One other thing that could be done is. You have to set an account to be used for the remote control access and that user must be who logs in.
So edit you policy using the windows policy editor to make it hard on a hacker. After he fails to enter the correct password three times the account logon is locked for one hour. Even an eight char password will work for that and since you know the password this should not be a problem for you but a big problem for the hacker.