Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: security

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

To establish persistence, the LNK files are copied to the Windows Startup folder so that they are automatically launched following a system reboot. The attack chain then displays a URL containing lures related to installing Starlink or a Ukrainian charity named Come Back Alive Foundation.

The HTML file is eventually executed via the Microsoft Edge browser in headless mode, which then loads the remote obfuscated script hosted on Pastefy.

The browser is executed with additional parameters like –no-sandbox, –disable-web-security, –allow-file-access-from-files, –use-fake-ui-for-media-stream, –auto-select-screen-capture-source=true, and –disable-user-media-security, granting it access to the local file system, as well as camera, microphone, and screen capture without requiring any user interaction.

Microsoft: Windows 11 users can’t access C: drive on some Samsung PCs

Microsoft is investigating a new issue affecting some Samsung laptops running Windows 11 after installing the February 2026 security updates, in which users lose access to their C:\ drive and are unable to launch applications.

The company says it is working with Samsung to determine whether the problem is related to the Windows updates or Samsung software installed on affected devices.

“Users might encounter the error, ‘C:\ is not accessible – Access denied’, which prevents access to files and blocks the launch of some applications including Outlook, Office apps, web browsers, system utilities and Quick Assist,” explains Microsoft.

Rates of Unbalanced Chromosome Rearrangements Associated with Pericentric and Paracentric Inversions: Analysis of Molecular Chromosome Results in Embryo Samples

PGT-SR reveals that even small pericentric and paracentric inversions carry a small but measurable reproductive risk, challenging assumptions of minimal impact in IVF outcomes.

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

Scientists use ‘negative light’ to send secret messages hidden inside heat

Researchers have developed a technology to invisibly transmit information disguised as background thermal radiation. Using a phenomenon called “negative light,” they transferred 100 kilobits of data per second in a way that was completely undetectable to outside observers.

Most methods for concealing data during transfer involve hiding it among other data or encrypting it in a way that makes it impossible to read without a cipher or other means of decryption. The new technique, by contrast, makes the data almost impossible to intercept because there’s no indication it’s being sent at all. It can also be encrypted through traditional means to further harden security, the team wrote in a paper published March 5 in the journal Light: Science & Applications.

Cardiopathogenic T Cells Govern Progression and Functional Remodeling in Inflammatory Cardiomyopathy and Chronic Myocarditis

In this JACCBTS article, Joachimbauer et al. demonstrate that cardiopathogenic CD4+ T cells induce acute yet reversible inflammation-driven myocardial changes, and that the persistence of these cells is a key factor driving functional cardiac remodeling.

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

Neurophysiology in the mirror: A tri-layer model of mirror movements informed by TMS evidence☆

[Mirror movements] Sebastianelli et al.: “Mirror movements can be interpreted within a tri-layer model reflecting distinct disruptions in corticospinal connectivity, interhemispheric inhibition, and supraspinal motor control.”

Your browser extensions or network settings have blocked the security verification process required by www.sciencedirect.com. To resolve this, try the following steps:

Temporarily disable browser extensions:

Microsoft releases Windows 10 KB5078885 extended security update

Microsoft has released the Windows 10 KB5078885 extended security update to fix the March 2026 Patch Tuesday vulnerabilities, including 2 zero-days and an issue that prevents some devices from shutting down.

If you are running Windows 10 Enterprise LTSC or are enrolled in the ESU program, you can install this update like normal by going into Settings, clicking on Windows Update, and manually performing a ’Check for Updates.’

After installing this update, Windows 10 will be updated to build 19045.7058, and Windows 10 Enterprise LTSC 2021 will be updated to build 19044.7058.

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Today is Microsoft’s March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day vulnerabilities.

This Patch Tuesday also addresses three “Critical” vulnerabilities, 2 of which are remote code execution flaws and the other is an information disclosure flaw.

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Interestingly, the original extension developer has published several other extensions under their name on the Chrome Web Store, and all of them have received a Featured badge. The developer also has an account on ExtensionHub, although no extensions are currently listed for sale. What’s more, the individual has attempted to sell domains like “AIInfraStack[.]com” for $2,500, stating the “strong keyword domain” is “relevant for [sic] rapidly growing AI ecosystem.”

“This is the extension supply chain problem in a nutshell,” Annex Security said. “A ‘Featured,’ reviewed, functional extension changes hands, and the new owner pushes a weaponized update to every existing user.”

The disclosure comes as Microsoft warned of the malicious Chromium‑based browser extensions that masquerade as legitimate AI assistant tools to harvest LLM chat histories and browsing data.

/* */