Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode

Microsoft Defender can now automatically isolate hacked endpoints

Microsoft is testing a new Defender for Endpoint capability that will automatically isolate compromised endpoints to thwart attackers’ attempts to move laterally across the network.

This is now available in preview mode and works as part of automatic attack disruption, a feature designed to contain attacks, limit their impact, and provide security teams with more remediation time.

Compromised endpoints that are automatically isolated are disconnected from the network to reduce the risk of further impact, but they retain connectivity to the Microsoft Defender for Endpoint service, which will continue to monitor the device.

Why Uploading Creates Only a Clone | Roman Yampolskiy

If your mind could be copied perfectly into a machine, would the uploaded version still be you?

Roman Yampolskiy argues that even a flawless digital upload would only create a copy rather than preserve the original self — raising deeper questions about personal identity, continuity, and whether virtual immortality truly preserves the person who entered the machine.

0:08 Why Uploading Creates a Copy Instead of You.
1:11 The Problem of Personal Identity.
2:27 Why Continuity Matters More Than Duplication.
4:12 Internal Observation and the Sense of Self.
5:11 Why Personal Identity Is Always Changing.

Roman V. Yampolskiy is a tenured Associate Professor of Computer Science at the University of Louisville’s Speed School of Engineering, where he founded and directs the Cyber Security Lab. Widely credited with coining the term \.

FBI warns of Kali365 phishing service targeting Microsoft 365 accounts

The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and bypass multi-factor authentication (MFA).

According to the FBI PSA, Kali365 first emerged in April 2026 and is distributed via Telegram channels for cybercriminals seeking an easier way to compromise Microsoft 365 accounts without stealing passwords or intercepting MFA codes.

The platform uses device code phishing, an increasingly popular method that abuses Microsoft’s legitimate OAuth 2.0 Device Authorization grant flow to gain access to Microsoft Entra and Microsoft 365 accounts.

US and Canada arrest and charge suspected Kimwolf botnet admin

U.S. and Canadian authorities arrested and charged a Canadian man with operating the KimWolf distributed denial-of-service (DDoS) botnet, which infected nearly two million devices worldwide.

23-year-old Jacob Butler (also known online as “Dort”) was arrested by Canadian authorities in Ottawa on Wednesday pursuant to an extradition warrant.

According to a criminal complaint unsealed on Thursday in the District of Alaska, Butler was taken into custody based on IP address and online account information, transaction records, and online messaging records that exposed his links to the KimWolf botnet.

The Growing Cybersecurity Risks To The Supply Chain In The AI Era

#cybersecurity #suppychains #ai #tech

Supply chains are a primary target for cybercriminals and provide the foundation of global commerce in the hyper-connected digital ecosystem of today. Artificial intelligence (AI) simultaneously exacerbates vulnerabilities as it revolutionizes operations through predictive analytics, automation, and real-time visibility. Sophisticated threat actors, ransomware groups, and nation-state actors employ AI to exploit the vulnerable links in intricate, multi-tiered supply networks.

Artificial intelligence can create dual-use dynamics. It promotes efficiency by facilitating real-time data transfers and hyper-connected operations, while simultaneously significantly expanding the attack surface. Compromises of a single vendor or update have been shown to have a cascading effect on economies, governments, and critical infrastructure through supply chain attacks.

In The AI Era, Supply Chains Are Prime Targets.

The complexity of supply chains is inherent, as they encompass continents, jurisdictions, and a multitude of third-party vendors, contractors, and software components. Each link—whether it be legacy systems, unvetted code, IoT devices, or 5G-enabled connections—provides potential entry points. AI exacerbates these risks by allowing attackers to automate reconnaissance, create polymorphic malware that evades detection, create personalized phishing campaigns, and identify vulnerabilities quicker than defenders can apply patches.

/* */