{"id":155287,"date":"2022-05-08T21:08:25","date_gmt":"2022-05-08T18:08:25","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=155287"},"modified":"2022-05-08T21:09:32","modified_gmt":"2022-05-08T18:09:32","slug":"yazilimini-guncelleyenin-riski-yariya-iniyor","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/yazilimini-guncelleyenin-riski-yariya-iniyor\/","title":{"rendered":"(Turkish) Yaz\u0131l\u0131m\u0131n\u0131 G\u00fcncelleyenin Riski Yar\u0131ya \u0130niyor"},"content":{"rendered":"

Sorry, this entry is only available in Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p>

<\/p>\n

Yay\u0131nlanan Siber G\u00fcvenlik G\u00fcndemi\u2019nde bu hafta, ABD Siber G\u00fcvenlik Ajans\u0131\u2019n\u0131n ge\u00e7ti\u011fimiz y\u0131l verilerine g\u00f6re en \u00e7ok kullan\u0131lan g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 g\u00fcndeme getirdi.<\/h2>\n

D\u00fcnyada her 5<\/strong> g\u00fcvenlik zafiyetinden 3<\/strong>\u2019\u00fcn\u00fcn uzaktan kod y\u00fcr\u00fctme<\/strong> olmas\u0131na dikkat \u00e7eken rapora g\u00f6re,\u00a0ayr\u0131cal\u0131k y\u00fckseltme zay\u0131fl\u0131\u011f\u0131, g\u00fcvenlik \u00f6zelli\u011fi atlama, rastgele kod y\u00fcr\u00fctme, rastgele dosya okuma<\/strong> ve yol ge\u00e7i\u015fi kusurlar\u0131<\/strong> oldu.<\/p>\n

\"\"Avustralya, Kanada, Yeni Zelanda, \u0130ngiltere<\/strong> ve ABD<\/strong>‘den siber g\u00fcvenlik yetkilileri taraf\u0131ndan yay\u0131nlanan “Rutin Olarak S\u00f6m\u00fcr\u00fclen En \u00c7ok Kullan\u0131lan\u00a0G\u00fcvenlik A\u00e7\u0131klar\u0131”<\/strong> raporuna g\u00f6re: Log4Shell, ProxyShell, ProxyLogon, ZeroLogon, Zoho ManageEngine AD SelfService Plus, Atlassian Confluence ve VMware vSphere Client<\/em>‘taki kusurlar en \u00e7ok yararlan\u0131lan g\u00fcvenlik a\u00e7\u0131klar\u0131ndan<\/strong> baz\u0131lar\u0131 olarak duyuruldu.<\/p>\n

S\u0131kl\u0131kla bir ele ge\u00e7irme silah\u0131na d\u00f6n\u00fc\u015ft\u00fcr\u00fclen di\u011fer kusurlar aras\u0131nda Microsoft Exchange Server<\/strong>‘da uzaktan kod y\u00fcr\u00fctme hatas\u0131, Pulse Secure Pulse Connect Secure<\/strong>‘da rastgele bir dosya okuma g\u00fcvenlik a\u00e7\u0131\u011f\u0131\u00a0<\/strong>ve\u00a0Fortinet FortiOS<\/strong> ve FortiProxy<\/strong>\u2019de path ge\u00e7i\u015f hatas\u0131 yer al\u0131yor.<\/p>\n

Yaz\u0131l\u0131m<\/span>\u00a0g\u00fcncellemelerini yapmak, g\u00fcvenlik riskini yar\u0131 yar\u0131ya azalt\u0131yor<\/strong><\/h3>\n

G\u00fcvenlik s\u0131zmalar\u0131n\u0131n en \u00e7ok g\u00fcncellemeleri<\/strong> a\u00e7\u0131klanan yaz\u0131l\u0131mlara yap\u0131ld\u0131\u011f\u0131n\u0131 s\u00f6yleyen BeyazNet Teknik Operasyonlar Direkt\u00f6r\u00fc Akg\u00fcn Yard\u0131mc\u0131, \u201cE-posta sunucular\u0131, sanal \u00f6zel a\u011f dedi\u011fimiz VPN sunucular\u0131 gibi sistemler en \u00e7ok hedef al\u0131nan ara\u00e7lar\u0131n ba\u015f\u0131nda geliyor. Sadece yaz\u0131l\u0131m<\/span>\u00a0 g\u00fcncellemelerinin zaman\u0131nda yap\u0131lmas\u0131 bile riski yar\u0131dan fazla azalt\u0131yor. G\u00fcvenlik zafiyetinin neden oldu\u011fu maddi, manevi kay\u0131p dikkate al\u0131nd\u0131\u011f\u0131nda basit \u00f6nlemlerle bu kay\u0131plar \u00f6nlenebilir.\u201d<\/em> \u015feklinde konu\u015ftu.<\/p>\n

\u00d6zellikle kamu kurumlar\u0131 i\u00e7in etkin g\u00fcncellemenin \u00e7ok \u00f6nemli oldu\u011funun alt\u0131n\u0131 \u00e7izilirken merkezi bir yama y\u00f6netim sisteminin<\/strong> \u00f6nemine dikkat \u00e7ekiliyor.<\/p>\n

BeyazNet\u2019in haftal\u0131k olarak yay\u0131nlad\u0131\u011f\u0131 Siber G\u00fcvenlik G\u00fcndemi<\/strong>\u2019nde haftan\u0131n exploitleri<\/strong><\/em>, haftan\u0131n zafiyetleri<\/strong><\/em>, haftan\u0131n zararl\u0131\u00a0yaz\u0131l\u0131mlar<\/span>\u0131<\/em> ve T\u00fcrkiye\u2019de haftan\u0131n veri ihlalleri<\/em> listeleniyor.<\/p>","protected":false},"excerpt":{"rendered":"

Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language. Yay\u0131nlanan Siber G\u00fcvenlik G\u00fcndemi\u2019nde bu hafta, ABD Siber G\u00fcvenlik Ajans\u0131\u2019n\u0131n ge\u00e7ti\u011fimiz y\u0131l verilerine g\u00f6re en \u00e7ok kullan\u0131lan g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 g\u00fcndeme getirdi. D\u00fcnyada […]<\/p>\n","protected":false},"author":1,"featured_media":155290,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[53,157],"tags":[103161,66021,101195,103163,30857,16303,103164,89329,103162,103165],"views":106,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/155287"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=155287"}],"version-history":[{"count":0,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/155287\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/155290"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=155287"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=155287"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=155287"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}