{"id":473,"date":"2015-08-16T18:34:22","date_gmt":"2015-08-16T15:34:22","guid":{"rendered":"https:\/\/furkansandal.com\/artan-ve-maalesef-basarili-olan-oltalama-phishing-saldirilari\/"},"modified":"2015-08-16T18:34:22","modified_gmt":"2015-08-16T15:34:22","slug":"artan-ve-maalesef-basarili-olan-oltalama-phishing-saldirilari","status":"publish","type":"post","link":"https:\/\/furkansandal.com\/artan-ve-maalesef-basarili-olan-oltalama-phishing-saldirilari\/","title":{"rendered":"Artan ve Maalesef Ba\u015far\u0131l\u0131 Olan Oltalama (Phishing) Sald\u0131r\u0131lar\u0131"},"content":{"rendered":"

Phishing (oltalama)<\/b> bilgi g\u00fcvenli\u011fi d\u00fcnyas\u0131n\u0131n d\u0131\u015f\u0131nda kalan pek \u00e7ok kullan\u0131c\u0131n\u0131n da art\u0131k fark\u0131na vard\u0131\u011f\u0131 bir konu.<\/p>\n


Bu sald\u0131r\u0131 metodu ile sald\u0131rganlar bizden;<\/p>\n

– finansal, ki\u015fisel, kullan\u0131m bilgilerimiz vb. bilgiler \u00e7al\u0131yor,
– bilgilerimizin teyidini yaparak daha emin tuzaklar kurabiliyor,
– bilgisayarlar\u0131m\u0131za uzaktan eri\u015fim sa\u011flama avantaj\u0131 ile yine bizden faydalan\u0131yorlar.<\/p>\n

T\u00fcrkiye’de son aylarda ba\u015far\u0131 y\u00fczdesinin artt\u0131\u011f\u0131 bu sald\u0131r\u0131 metodu yo\u011fun olarak e-posta ile bizlere ula\u015f\u0131yor. Son haftalar\u0131n en pop\u00fcler facias\u0131 ise “PTT Posta Hizmetleri” maskesi ile meydana \u00e7\u0131kt\u0131.<\/p>\n

Bu son sald\u0131r\u0131da ger\u00e7ekten ba\u015far\u0131l\u0131 bir \u00e7al\u0131\u015fma yapan (!) h\u0131rs\u0131zlar\u0131n, bizim g\u00fcndelik zaaflar\u0131m\u0131z\u0131 nas\u0131l takip ettiklerini, bizi pek \u00e7ok firmay\u0131 taklit ederek yakalamaya \u00e7al\u0131\u015ft\u0131klar\u0131n\u0131 g\u00f6rmekteyiz.<\/p>\n

\u00dcstelik bizden bilgi \u00e7alma a\u015famas\u0131 bir sonraki a\u015famaya, fidye istemeye kadar uzand\u0131!<\/p>\n

<\/div>\n

Kargo, telefon operat\u00f6r\u00fc, internet servis sa\u011flay\u0131c\u0131  gibi dev firmalar\u0131m\u0131z\u0131n adreslerini ve kimliklerini taklit eden sald\u0131rganlar T\u00fcrkiye’de faaliyet g\u00f6stermeye olduk\u00e7a kararl\u0131 g\u00f6r\u00fcn\u00fcyor.<\/p>\n

G\u00f6nderilen oltalama (phishing) mesajlar\u0131 ile indirilen dosya neticesinde sistemimizde yer alan ve genellikle bizim i\u00e7in \u00f6nem ta\u015f\u0131yan dosyalar kriptolanarak bu dosyalar\u0131n kullan\u0131m\u0131 engelleniyor.<\/b><\/p>\n

Bir \u00fccret kar\u015f\u0131l\u0131\u011f\u0131nda da kullan\u0131ma a\u00e7\u0131labilece\u011fine dair mesaj g\u00f6nderilip, pe\u015fin \u00f6deme indirimi (!) de sunuluyor.<\/p>\n

Ransomware (fidye)<\/b> olarak bilinen bu metot maalesef d\u00fcnya genelinde teknoloji yat\u0131r\u0131m\u0131n\u0131 k\u0131smen yapan ancak hen\u00fcz “g\u00fcvenlik” al\u0131\u015fkanl\u0131klar\u0131 ve altyap\u0131 yat\u0131r\u0131m seviyesi yetersiz \u00fclkeleri<\/b> \u00f6zellikle hedef almakta<\/b>.<\/p>\n

G\u00fcn\u00fcm\u00fczde art\u0131k sald\u0131rganlar “hedef” se\u00e7erek daha ak\u0131ll\u0131ca ilerliyor<\/b><\/h3>\n

Sald\u0131rganlar\u0131n art\u0131k daha tertipli ve organize olarak d\u00fczenledikleri bu sald\u0131r\u0131lar kar\u015f\u0131s\u0131nda g\u00fcvenlik camias\u0131 bir \u00e7ok noktada ilk sald\u0131r\u0131lara \u00f6nlem almakta yetersiz kal\u0131yor. \u00c7\u00fcnk\u00fc sald\u0131r\u0131 t\u00fcrleri \u00e7e\u015fitleniyor ve de\u011fi\u015fik co\u011frafyalara yayg\u0131nla\u015f\u0131yor. Bu tip sald\u0131r\u0131lar\u0131n ise ilk g\u00f6r\u00fcld\u00fc\u011f\u00fc andan itibaren tespiti ayr\u0131 bir uzmanl\u0131k konusu.<\/p>\n

Geli\u015ftirilen \u00f6nlemlerin \u00e7o\u011funda insan fakt\u00f6r\u00fc dolay\u0131s\u0131yla ba\u015far\u0131 d\u00fczeyinin yetersiz oldu\u011fu g\u00f6r\u00fcl\u00fcyor. Zincirin en \u00f6nemli par\u00e7as\u0131 ve zafiyet kayna\u011f\u0131 olan insanlar her ne kadar bilin\u00e7li olsalar dahi yeni metotlar kar\u015f\u0131s\u0131nda yetersiz kal\u0131yor, sorumluluklar\u0131n\u0131 yerine getirmeyi unutuyor, ya da \u00e7o\u011fu zaman “dalg\u0131nl\u0131\u011f\u0131na geliyor”.<\/p>\n

Herkesin sat\u0131n alabilece\u011fi ve i\u00e7i rahat \u015fekilde uzman\u0131 olmad\u0131klar\u0131 bu tehlikeli konular\u0131 emanet edebilece\u011fi bir \u00e7\u00f6z\u00fcm ne kadar g\u00fczel olurdu de\u011fil mi?<\/p>\n

Neyse ki ISR Bilgi G\u00fcvenli\u011fi bu konudaki \u00e7al\u0131\u015fmalar\u0131n\u0131 neredeyse tamamlamak \u00fczere. Bu tip sald\u0131r\u0131lar\u0131n etkilerini daha ortaya \u00e7\u0131kt\u0131klar\u0131 ilk g\u00fcnden bertaraf edecek \u00e7\u00f6z\u00fcmler geli\u015ftirmek \u00fczerine \u00e7al\u0131\u015fmalar\u0131n\u0131 h\u0131zla sonu\u00e7land\u0131r\u0131yor..<\/p>\n

Furkan SANDAL<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Phishing (oltalama) bilgi g\u00fcvenli\u011fi d\u00fcnyas\u0131n\u0131n d\u0131\u015f\u0131nda kalan pek \u00e7ok kullan\u0131c\u0131n\u0131n da art\u0131k fark\u0131na vard\u0131\u011f\u0131 bir konu. Bu sald\u0131r\u0131 metodu ile sald\u0131rganlar…<\/p>\n","protected":false},"author":1,"featured_media":474,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_mi_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","footnotes":""},"categories":[6,1,9,10,7,4],"tags":[],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/furkansandal.com\/wp-content\/uploads\/2015\/08\/dont_hacking.jpg?fit=398%2C288&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p6BM7I-7D","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/473"}],"collection":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/comments?post=473"}],"version-history":[{"count":0,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/473\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media\/474"}],"wp:attachment":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media?parent=473"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/categories?post=473"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/tags?post=473"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}