{"id":159153,"date":"2022-07-15T10:59:03","date_gmt":"2022-07-15T07:59:03","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=159153"},"modified":"2022-07-15T10:59:33","modified_gmt":"2022-07-15T07:59:33","slug":"bircok-kurulus-yasanilan-guvenlik-ihlalleri-nedeniyle-iflasin-esiginde","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/bircok-kurulus-yasanilan-guvenlik-ihlalleri-nedeniyle-iflasin-esiginde\/","title":{"rendered":"(Turkish) Bir\u00e7ok Kurulu\u015f Ya\u015fan\u0131lan G\u00fcvenlik \u0130hlalleri Nedeniyle \u0130flas\u0131n E\u015fi\u011finde"},"content":{"rendered":"

Sorry, this entry is only available in Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p>

<\/p>\n

K\u00fcresel sigorta \u015firketi Hiscox, yay\u0131nlad\u0131\u011f\u0131 yeni rapor ile b\u00fcy\u00fck bir tehlikeye dikkat \u00e7ekti. Raporda yer alan veriler Avrupa ve Amerika’daki bir\u00e7ok kurulu\u015fun, ya\u015fad\u0131klar\u0131 g\u00fcvenlik ihlalleri nedeniyle iflas\u0131n e\u015fi\u011fine geldi\u011fini ortaya koyuyor. Siber g\u00fcvenlik alan\u0131nda nereye yat\u0131r\u0131m yapaca\u011f\u0131n\u0131 bilmek her zamankinden \u00e7ok daha \u00f6nemli. Siber g\u00fcvenlik \u015firketi ESET ise bu konuda neler yap\u0131labilece\u011fini inceledi.<\/strong><\/h2>\n

Hiscox<\/strong> sigorta \u015firketinin ABD, Birle\u015fik Krall\u0131k, Bel\u00e7ika, Fransa, Almanya, \u0130spanya, Hollanda<\/strong> ve \u0130rlanda<\/strong>‘daki 5.000 firma<\/strong> ile yapt\u0131\u011f\u0131 g\u00f6r\u00fc\u015fmelerden ortaya \u00e7\u0131kan bulgulara g\u00f6re 8 \u00fclke<\/strong>nin 7’si<\/strong>, siber sald\u0131r\u0131y\u0131<\/strong> i\u015fletmelerine y\u00f6nelik bir numaral\u0131 tehdit olarak belirtmi\u015f.<\/p>\n

\"\"Ankete kat\u0131lanlar\u0131n yar\u0131s\u0131 (%48) son 12 ay<\/strong> i\u00e7inde bir siber sald\u0131r\u0131<\/strong> ya\u015fad\u0131\u011f\u0131n\u0131 bildirmi\u015f. Yine ankete kat\u0131lanlar\u0131n % 16<\/strong>\u2019s\u0131 bir \u00f6nceki y\u0131l bir fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131s\u0131<\/strong> ya\u015farken bu oran \u015fu an kat\u0131l\u0131mc\u0131lar\u0131n be\u015fte birine y\u00fckselmi\u015f<\/strong> (%19). Kurbanlar\u0131n \u00fc\u00e7te ikisi de sald\u0131rgana<\/strong> \u00f6deme yapm\u0131\u015f.<\/p>\n

Siber sald\u0131r\u0131 kurbanlar\u0131<\/strong>n\u0131n yar\u0131s\u0131ndan fazlas\u0131 (%55\u2019i) siber sald\u0131r\u0131y\u0131 y\u00fcksek risk alan\u0131 olarak g\u00f6r\u00fcrken b\u00f6yle bir sald\u0131r\u0131 ya\u015famam\u0131\u015f olanlar i\u00e7in bu oran % 36<\/strong>\u2019ya kadar d\u00fc\u015f\u00fcyor. Benzer \u015fekilde ma\u011fdurlar\u0131n % 41<\/strong>\u2019i riske maruz kalma olas\u0131l\u0131klar\u0131n\u0131n artt\u0131\u011f\u0131n\u0131 s\u00f6ylerken di\u011fer grup i\u00e7in bu oran d\u00f6rtte birden az (%23). Bir di\u011fer ilgin\u00e7 ayr\u0131nt\u0131; siber su\u00e7lular<\/strong> gitgide daha k\u00fc\u00e7\u00fck firmalar\u0131 hedefliyor. Y\u0131ll\u0131k 100 bin<\/strong> ile 500 bin ABD dolar\u0131<\/strong> de\u011ferinde geliri olan firmalar da bug\u00fcn bir ile 9 milyon ABD dolar\u0131<\/strong> de\u011ferinde geliri olan firmalar\u0131n maruz kald\u0131\u011f\u0131 sald\u0131r\u0131 kadar \u00e7ok sald\u0131r\u0131ya maruz<\/strong> kalabiliyor.<\/p>\n

Firmalar i\u00e7in a\u011f\u0131r bedel<\/strong><\/h3>\n

Sald\u0131r\u0131ya maruz kalan kat\u0131l\u0131mc\u0131 firmalar\u0131n be\u015fte birinin, ge\u00e7en seneye g\u00f6re % 24<\/strong>\u2019l\u00fck bir art\u0131\u015f ile \u00f6deme g\u00fc\u00e7lerinin tehdit alt\u0131na<\/strong> girdi\u011fini belirtmesi de \u00f6nemli bir bulgu. ESET uzmanlar\u0131 raporda yer almasa da g\u00fcvenlik ihlalinin maliyetlerinin operasyonel kesintiler, hukuki maliyetler, BT\u2019nin fazla mesai maliyetleri ve \u00fc\u00e7\u00fcnc\u00fc taraf adli bili\u015fim maliyetleri, d\u00fczenleyici cezalar, m\u00fc\u015fteri kayb\u0131, \u00fcretim ve sat\u0131\u015f kayb\u0131, uzun s\u00fcreli itibar kayb\u0131na<\/strong> da yol a\u00e7m\u0131\u015f olabilece\u011fine dikkat \u00e7ekiyor. Bu durum siber g\u00fcvenlik harcamalar\u0131n\u0131n<\/strong> neden artt\u0131\u011f\u0131n\u0131 k\u0131smen a\u00e7\u0131kl\u0131yor. Rapora g\u00f6re, ankete kat\u0131lanlar\u0131n ortalama siber g\u00fcvenlik harcamalar\u0131<\/strong> ge\u00e7en sene % 60<\/strong> art\u0131\u015f g\u00f6stererek 5,3 milyon ABD dolar\u0131<\/strong> olarak ger\u00e7ekle\u015firken 2019\u2019dan bug\u00fcne<\/strong> s\u00f6z konusu harcamalar % 250<\/strong> oran\u0131nda art\u0131\u015f g\u00f6stermi\u015f durumda.<\/p>\n

Sald\u0131rganlar, kurulu\u015flar\u0131n gizlili\u011fini nas\u0131l ihlal ediyor?<\/strong><\/h3>\n

Kurulu\u015funuzun iflas\u0131 nas\u0131l \u00f6nleyebilece\u011fini daha iyi anlamak i\u00e7in ilk \u00f6nce tehdit akt\u00f6rlerinin<\/strong> bu kadar zarar\u0131 nas\u0131l verebildi\u011fini bilmemiz gerekiyor. Rapora g\u00f6re ba\u015fl\u0131ca sald\u0131r\u0131lar;<\/span><\/p>\n

– Bulut sunucular\u0131 (%41)<\/p>\n

– Kurumsal e-postalar (%40)<\/p>\n

– Kurulu\u015ftaki sunucular (%37)<\/p>\n

– Uzaktan eri\u015fimli sunucular (%31)<\/p>\n

– \u00c7al\u0131\u015fanlar\u0131n mobil cihazlar\u0131 (%29)<\/p>\n

– Da\u011f\u0131t\u0131k Hizmet Engelleme (DDoS) sald\u0131r\u0131s\u0131 (%26)<\/p>\n

Bu veriler, di\u011fer raporlar\u0131n bulgular\u0131yla<\/strong> ve uzaktan \u00e7al\u0131\u015fman\u0131n<\/strong>, salg\u0131nla ilgili bulut altyap\u0131<\/strong> yat\u0131r\u0131mlar\u0131n\u0131n ve uzaktan \u00e7al\u0131\u015fmadaki g\u00fcvenlik sorunlar\u0131<\/strong>n\u0131n g\u00fcn\u00fcm\u00fczde kurulu\u015flar\u0131n kar\u015f\u0131la\u015ft\u0131\u011f\u0131 en b\u00fcy\u00fck risklerden baz\u0131lar\u0131 oldu\u011funa yer veren a\u00e7\u0131klamalarla da benzerlik g\u00f6steriyor; insan hatas\u0131yla bir araya gelerek tehdit akt\u00f6rlerinin hedefleyebilece\u011fi<\/strong> daha b\u00fcy\u00fck bir sald\u0131r\u0131 alan\u0131 olu\u015fturuyor.<\/p>\n

Peki ne yapmal\u0131?<\/strong><\/h3>\n

Hiscox taraf\u0131ndan tahmin edilen siber sald\u0131r\u0131ya kar\u015f\u0131 haz\u0131rl\u0131k<\/strong> oranlar\u0131n\u0131n y\u0131lda % 2,6<\/strong> oran\u0131nda d\u00fc\u015ferek \u201cuzman\u201d<\/strong> olarak s\u0131n\u0131fland\u0131r\u0131lan firmalar\u0131n say\u0131s\u0131n\u0131n % 20<\/strong>\u2019den % 4,5<\/strong>\u2019e gerileyip ciddi bir d\u00fc\u015f\u00fc\u015f sergilemesi endi\u015fe verici<\/strong>. Acemiler olarak s\u0131n\u0131fland\u0131r\u0131lan firmalar\u0131n da kayda de\u011fer<\/strong> bir \u015fekilde d\u00fc\u015f\u00fc\u015f g\u00f6stermesiyle \u00e7o\u011fu firma \u201corta seviyede\u201d<\/strong> kalm\u0131\u015f. Raporun da g\u00f6sterdi\u011fi \u00fczere \u201csiber acemiler\u201d<\/strong> olarak s\u0131n\u0131fland\u0131r\u0131lan firmalar i\u00e7in ortalama sald\u0131r\u0131 maliyetleri<\/strong> gelirlerin bir y\u00fczdesi olarak 2.5 kat<\/strong> daha y\u00fcksek oldu\u011fu i\u00e7in siber sald\u0131r\u0131lara kar\u015f\u0131 haz\u0131r olma durumu \u00f6nem ta\u015f\u0131yor.<\/p>\n

Siber sald\u0131r\u0131lara kar\u015f\u0131 olgun seviyede haz\u0131r bir kurulu\u015fun nitelikleri neler?<\/strong><\/h3>\n

Siber g\u00fcvenlik<\/strong> konusunu, a\u00e7\u0131k\u00e7a tan\u0131mlam\u0131\u015f roller ve y\u00f6netim kurulu<\/strong> ya da \u00fcst d\u00fczey y\u00f6netici<\/strong> deste\u011fi ile resmi hale getirin<\/p>\n

– \u00dcst d\u00fczey y\u00f6neticilerin siber g\u00fcvenli\u011fi<\/strong> iyi bilmesini ve siber g\u00fcvenlikle ili\u015fkili olmas\u0131n\u0131 sa\u011flay\u0131n<\/p>\n

ABD Ulusal Standartlar ve Teknoloji Enstit\u00fcs\u00fc (NIST)<\/strong> \u00e7er\u00e7evesi gibi en iyi uygulama \u00f6rneklerinin standartlar\u0131n\u0131 uygulay\u0131n<\/p>\n

Yat\u0131r\u0131m\u0131n\u0131z\u0131 NIST<\/strong>\u2019in tan\u0131mla, koru, tespit et, m\u00fcdahale et<\/strong> ve kurtar<\/strong> \u015feklindeki 5 temel i\u015flevine y\u00f6nelik yap\u0131n<\/p>\n

– Mevcut jeopolitik belirsizlik \u0131\u015f\u0131\u011f\u0131nda olaya m\u00fcdahale etme planlamas\u0131na<\/strong> ve sald\u0131r\u0131 sim\u00fclasyonlar\u0131na odaklan\u0131n<\/strong><\/p>\n

Kurumsal verilerinizi<\/strong> ve teknoloji altyap\u0131n\u0131z\u0131<\/strong> d\u00fczenli olarak de\u011ferlendirmeye al\u0131n<\/p>\n

Etkili siber g\u00fcvenlik<\/strong> fark\u0131ndal\u0131k e\u011fitimi sa\u011flay\u0131n<\/p>\n

Tedarik\u00e7ilerinizin<\/strong> ve i\u015f ortaklar\u0131n\u0131z\u0131n<\/strong> g\u00fcvenlik gerekliliklerine uymas\u0131n\u0131 sa\u011flay\u0131n<\/p>\n

Yamalama, s\u0131zma testi<\/strong> ve d\u00fczenli yedeklemeler<\/strong> gibi kolay uygulanabilen s\u00fcre\u00e7lere odaklan\u0131n<\/p>\n

Birlikte ele al\u0131nd\u0131\u011f\u0131nda bu ad\u0131mlar, nihayetinde kurulu\u015fun iflas\u0131na neden olabilecek bir sald\u0131r\u0131 ihtimalini<\/strong> azaltmaya yard\u0131mc\u0131 olacakt\u0131r.<\/p>\n

Detayl\u0131 bilgi i\u00e7in:<\/strong>\u00a0https:\/\/www.eset.com\/tr\/blog\/siber-saldirilar-kuruluslar-icin-ciddi-bir-varolussal-tehdit\/<\/a><\/p>","protected":false},"excerpt":{"rendered":"

Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language. K\u00fcresel sigorta \u015firketi Hiscox, yay\u0131nlad\u0131\u011f\u0131 yeni rapor ile b\u00fcy\u00fck bir tehlikeye dikkat \u00e7ekti. Raporda yer alan veriler Avrupa ve Amerika’daki bir\u00e7ok kurulu\u015fun, […]<\/p>\n","protected":false},"author":1,"featured_media":159157,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[53],"tags":[90723,104802,104801,16303,68528,104800,17703],"views":66,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/159153"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=159153"}],"version-history":[{"count":0,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/159153\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/159157"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=159153"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=159153"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=159153"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}