{"id":150679,"date":"2022-02-10T13:43:31","date_gmt":"2022-02-10T10:43:31","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=150679"},"modified":"2022-02-10T13:47:41","modified_gmt":"2022-02-10T10:47:41","slug":"en-cok-karsilasilan-saldiri-turu-parola-tahmini","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/en-cok-karsilasilan-saldiri-turu-parola-tahmini\/","title":{"rendered":"(Turkish) En \u00c7ok Kar\u015f\u0131la\u015f\u0131lan Sald\u0131r\u0131 T\u00fcr\u00fc ‘Parola Tahmini'"},"content":{"rendered":"

Sorry, this entry is only available in Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p>

<\/p>\n

ESET Tehdit Raporu\u2019nda yer alan verilere g\u00f6re en s\u0131k kar\u015f\u0131la\u015f\u0131lan sald\u0131r\u0131 t\u00fcr\u00fc parola tahmin sald\u0131r\u0131lar\u0131 olurken, ProxyLogon g\u00fcvenlik a\u00e7\u0131\u011f\u0131 en s\u0131k kar\u015f\u0131la\u015f\u0131lan 2’inci harici sald\u0131r\u0131 vekt\u00f6r\u00fc oldu.<\/strong><\/h2>\n

Ara\u015ft\u0131rmac\u0131lara g\u00f6re, 2021 istatistikleri<\/strong>nde parola tahmin sald\u0131r\u0131lar\u0131ndan<\/strong> hemen sonra gelen ProxyLogon<\/strong> g\u00fcvenlik a\u00e7\u0131\u011f\u0131, en s\u0131k kar\u015f\u0131la\u015f\u0131lan 2’inci harici sald\u0131r\u0131 vekt\u00f6r\u00fc<\/strong> oldu. 2021 y\u0131l\u0131 A\u011fustos ay\u0131nda Microsoft Exchange<\/strong> sunucular\u0131 ProxyLogon\u2019un \u201ck\u00fc\u00e7\u00fck karde\u015fi\u201d<\/strong> ProxyShell<\/strong> taraf\u0131ndan sald\u0131r\u0131ya u\u011frad\u0131<\/strong> d\u00fcnya genelinde \u00e7e\u015fitli tehdit gruplar\u0131<\/strong> bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan faydaland\u0131.<\/p>\n

\"\"Raporda, Aral\u0131k ay\u0131 ortalar\u0131nda yayg\u0131n olarak g\u00f6r\u00fclen Log4j arac\u0131ndaki<\/strong> ba\u015fka bir kritik sorun olan Log4Shell g\u00fcvenlik a\u00e7\u0131\u011f\u0131na da yer veriliyor. D\u00fcnya genelindeki BT ekipleri<\/strong>, bir kez daha sistemlerindeki bu sorunun yerini tespit etmede ve yamamada zorluk ya\u015fad\u0131. ESET\u2019in Ara\u015ft\u0131rmadan Sorumlu Ba\u015fkan\u0131 Roman Kov\u00e1\u010d bu durumu \u015f\u00f6yle a\u00e7\u0131kl\u0131yor: \u201cYayg\u0131n G\u00fcvenlik A\u00e7\u0131\u011f\u0131 Puan Sisteminde 10 puan alan bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131, say\u0131s\u0131z sunucunun kontrol\u00fcn\u00fc tamamen ele alma riskini bar\u0131nd\u0131r\u0131yor, dolay\u0131s\u0131yla siber su\u00e7lular\u0131n bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 derhal suistimal etmeye ba\u015flamas\u0131 s\u00fcrpriz de\u011fil. Log4j sald\u0131r\u0131lar\u0131n\u0131n, ge\u00e7ti\u011fimiz y\u0131l\u0131n yaln\u0131zca son \u00fc\u00e7 haftas\u0131nda biliniyor olmas\u0131na ra\u011fmen 2021 y\u0131l\u0131yla ilgili istatistiklerimizde en yayg\u0131n harici yetkisiz giri\u015f vekt\u00f6r\u00fc s\u0131ralamas\u0131nda be\u015finci s\u0131rada yer almas\u0131, tehdit akt\u00f6rlerinin yeni ortaya \u00e7\u0131kan kritik g\u00fcvenlik a\u00e7\u0131klar\u0131ndan h\u0131zl\u0131 bir \u015fekilde yararlanabildi\u011fini g\u00f6steriyor.\u201d<\/em><\/p>\n

Uzaktan Masa\u00fcst\u00fc Protokol\u00fc sald\u0131r\u0131lar\u0131nda rekor art\u0131\u015f<\/strong><\/h3>\n

ESET telemetrisine g\u00f6re y\u0131l\u0131n sonunda Uzaktan Masa\u00fcst\u00fc Protokol\u00fc (RDP) sald\u0131r\u0131lar\u0131<\/strong> da \u00e7alkant\u0131l\u0131 bir d\u00f6neme girerek, 2020<\/strong> ve 2021 y\u0131l\u0131<\/strong> boyunca art\u0131\u015fa ge\u00e7ti. 2021\u2019de k\u0131s\u0131tlamalarla ilgili bir kaos ya\u015fanmamas\u0131na<\/strong> ve uzaktan \u00e7al\u0131\u015fmaya ge\u00e7i\u015f s\u00fcreci<\/strong> art\u0131k h\u0131z\u0131n\u0131 kaybetmi\u015f olmas\u0131na ra\u011fmen, 2021 y\u0131l\u0131 3’\u00fcnc\u00fc d\u00f6neminin<\/strong> son haftalar\u0131nda bu sald\u0131r\u0131lar rekor say\u0131lara<\/strong> ula\u015ft\u0131 ve engellenen toplam sald\u0131r\u0131 giri\u015fimleri % 897<\/strong>\u2019lik bir art\u0131\u015f g\u00f6sterdi.<\/p>\n

NFT\u2019ler ile birlikte sald\u0131r\u0131lar da artt\u0131\u00a0<\/strong><\/h3>\n

2021\u2019in ilk yar\u0131s\u0131nda g\u00f6r\u00fclen kritik altyap\u0131lara y\u00f6nelik sald\u0131r\u0131lar, fahi\u015f fidye talepleri<\/strong> ve 5 milyar ABD dolar\u0131<\/strong>ndan daha fazla de\u011fere sahip potansiyel bitcoin i\u015flemi, fidye yaz\u0131l\u0131mlar\u0131yla<\/strong> ilgili 2021 y\u0131l\u0131ndaki en k\u00f6t\u00fc beklentilerin \u00e7ok \u00fcst\u00fcne \u00e7\u0131kt\u0131. Fidye yaz\u0131l\u0131m\u0131, ESET 2020 D\u00f6rd\u00fcnc\u00fc \u00c7eyrek Tehdit Raporu<\/strong>\u2019nda \u201cher zamankinden daha agresif\u201d<\/strong> olarak tan\u0131mlanm\u0131\u015ft\u0131. Kas\u0131m ay\u0131nda bitcoin kurlar\u0131<\/strong> en y\u00fcksek oran\u0131na ula\u015f\u0131rken, ESET uzmanlar\u0131 kripto paray\u0131 hedef alan<\/strong> tehditlere y\u00f6nelim oldu\u011funu g\u00f6zlemledi ve NFT\u2019lerin son zamanlarda pop\u00fcler olmas\u0131yla bu y\u00f6nelim artt\u0131.<\/p>\n

e-posta sald\u0131r\u0131lar\u0131ndaki art\u0131\u015f dikkat \u00e7ekici<\/strong><\/h3>\n

ESET, mobil d\u00fcnyada Android k\u00f6t\u00fc<\/strong> ama\u00e7l\u0131 bankac\u0131l\u0131k yaz\u0131l\u0131m alg\u0131lamalar\u0131n\u0131n<\/strong> \u00e7ok b\u00fcy\u00fck bir art\u0131\u015f g\u00f6sterdi\u011fini belirtti. Bu alg\u0131lamalar, 2020\u2019e k\u0131yasla % 428<\/strong> artt\u0131 ve Android platformu<\/strong>nda yayg\u0131n g\u00f6r\u00fclen bir sorun olan reklam destekli bilgisayar yaz\u0131l\u0131m\u0131<\/strong> alg\u0131lamalar\u0131yla ayn\u0131 seviyelere ula\u015ft\u0131. Bir\u00e7ok sald\u0131r\u0131ya kap\u0131 a\u00e7an e-posta tehditlerinin<\/strong> y\u0131ll\u0131k olarak alg\u0131lama oranlar\u0131 2 kattan daha fazla<\/strong> art\u0131\u015f g\u00f6sterdi. E-posta eklerinde Emotet<\/strong>\u2019e \u00f6zg\u00fc k\u00f6t\u00fc ama\u00e7l\u0131 makrolar\u0131n<\/strong> h\u0131zl\u0131 bir \u015fekilde d\u00fc\u015f\u00fc\u015f g\u00f6stermesine oranla \u00e7ok daha h\u0131zl\u0131 bir art\u0131\u015f g\u00f6steren bu ak\u0131m, \u00f6zellikle kimlik av\u0131 h\u0131rs\u0131zl\u0131\u011f\u0131 e-postalar\u0131ndaki art\u0131\u015fla<\/strong> \u00f6ne \u00e7\u0131k\u0131yor. Raporda belirtildi\u011fi \u00fczere, y\u0131l\u0131n b\u00fcy\u00fck bir k\u0131sm\u0131nda g\u00f6r\u00fclmeyen, k\u00f6t\u00fc bir \u00fcne sahip truva at\u0131 Emotet<\/strong>, 3’\u00fcnc\u00fc d\u00f6nemde yeniden g\u00f6r\u00fclmeye ba\u015fland\u0131.<\/p>","protected":false},"excerpt":{"rendered":"

Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language. ESET Tehdit Raporu\u2019nda yer alan verilere g\u00f6re en s\u0131k kar\u015f\u0131la\u015f\u0131lan sald\u0131r\u0131 t\u00fcr\u00fc parola tahmin sald\u0131r\u0131lar\u0131 olurken, ProxyLogon g\u00fcvenlik a\u00e7\u0131\u011f\u0131 en s\u0131k kar\u015f\u0131la\u015f\u0131lan […]<\/p>\n","protected":false},"author":1,"featured_media":150685,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[53],"tags":[100858,100855,100852,100854,100856,66021,100857,36497,89543,100849,100848,100850,11567,100851],"views":145,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/150679"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=150679"}],"version-history":[{"count":0,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/150679\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/150685"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=150679"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=150679"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=150679"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}