If my private key is exposed, can an attacker disable the Interceptor using the private key?

No, an attacker cannot disable the Interceptor using just the private key. This is because initiating privileged operations (such as disabling Interceptor) requires multi-factor authentication (MFA). This additional layer of security ensures that even if the private key is compromised, the attacker cannot bypass the Interceptor's safeguards without successfully passing MFA, thereby protecting your assets from unauthorized access and actions.