{"id":76987,"date":"2018-08-01T13:30:17","date_gmt":"2018-08-01T10:30:17","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=76987"},"modified":"2018-08-01T13:30:17","modified_gmt":"2018-08-01T10:30:17","slug":"enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde\/","title":{"rendered":"(Turkish) Enerji, Petrol ve Gaz Sekt\u00f6rleri Siber Su\u00e7lular\u0131n Hedefinde!"},"content":{"rendered":"<p class=\"qtranxs-available-languages-message qtranxs-available-languages-message-en\">Sorry, this entry is only available in <a href=\"https:\/\/www.enerjigazetesi.ist\/tr\/wp-json\/wp\/v2\/posts\/76987\" class=\"qtranxs-available-language-link qtranxs-available-language-link-tr\" title=\"Turkish\">Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p><p><strong>Kaspersky Lab ara\u015ft\u0131rmac\u0131lar\u0131, siber su\u00e7lular\u0131n para kazanma amac\u0131yla tasarlad\u0131\u011f\u0131 yeni bir finansal hedefli kimlik av\u0131 e-postas\u0131 dalgas\u0131n\u0131 tespit etti. Resmi tedarik ve muhasebe belgeleri gibi g\u00f6r\u00fcnen e-postalar, \u00e7o\u011funlu\u011fu Rusya\u2019da olmak \u00fczere en az 400 end\u00fcstriyel kurumu etkiledi. 2017 sonbahar\u0131nda ba\u015flayan sald\u0131r\u0131lar, petrol ve gaz, metal\u00fcrji, enerji, in\u015faat ve lojistik sekt\u00f6rlerinden bir\u00e7ok \u015firketteki y\u00fczlerce bilgisayar\u0131 hedef ald\u0131.<\/strong><\/p>\n<p>Tespit edilen sald\u0131r\u0131 dalgas\u0131nda, su\u00e7lular\u0131n yaln\u0131zca end\u00fcstri \u015firketlerine de\u011fil di\u011fer kurumlara da sald\u0131rd\u0131\u011f\u0131 belirlendi. Ancak sald\u0131r\u0131lar\u0131n b\u00fcy\u00fck bir \u00e7o\u011funlu\u011fu end\u00fcstri \u015firketlerini hedef ald\u0131. Zararl\u0131 yaz\u0131l\u0131m i\u00e7eren eklere sahip e-postalar g\u00f6nderen su\u00e7lular, kurbanlar\u0131 gizli veriler vermeleri i\u00e7in <img loading=\"lazy\" class=\"alignleft size-medium wp-image-76988\" src=\"https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde-300x169.jpg\" alt=\"\" width=\"300\" height=\"169\" srcset=\"https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde-300x169.jpg 300w, https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde-768x432.jpg 768w, https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde-500x281.jpg 500w, https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde-80x45.jpg 80w, https:\/\/www.enerjigazetesi.ist\/wp-content\/uploads\/2018\/08\/enerji-petrol-ve-gaz-sektorleri-siber-suclularin-hedefinde.jpg 868w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>kand\u0131rmaya \u00e7al\u0131\u015ft\u0131. Ard\u0131ndan su\u00e7lular bu verileri para kazanmak i\u00e7in kulland\u0131.<\/p>\n<p>Kaspersky Lab\u2019in elde etti\u011fi verilere g\u00f6re bu e-posta dalgas\u0131 yakla\u015f\u0131k 800 adet bilgisayar\u0131 hedef ald\u0131. Sald\u0131r\u0131da ama\u00e7, kurumlardan para ve daha sonra yeni sald\u0131r\u0131larda kullan\u0131labilecek gizli veriler \u00e7almakt\u0131. Resmi tedarik ve muhasebe belgeleri gibi g\u00f6r\u00fcnen e-postalarda, sald\u0131r\u0131ya u\u011frayan kurumlar\u0131n profiliyle ili\u015fkili ve belgenin g\u00f6nderildi\u011fi \u00e7al\u0131\u015fan\u0131n kimli\u011finin de dikkate al\u0131nd\u0131\u011f\u0131 i\u00e7erikler yer al\u0131yordu. Sald\u0131rganlar\u0131n kurbanlara isimleriyle hitap etmesi de dikkat \u00e7eken bir durumdu. Bu da sald\u0131r\u0131lar\u0131n dikkatlice haz\u0131rland\u0131\u011f\u0131n\u0131 ve su\u00e7lular\u0131n her bir kullan\u0131c\u0131 i\u00e7in \u00f6zel bir mesaj olu\u015fturmaya zaman ay\u0131rd\u0131\u011f\u0131n\u0131 g\u00f6steriyor.<\/p>\n<p>Bu e-postalardan alan biri zararl\u0131 eklere t\u0131klad\u0131\u011f\u0131nda, de\u011fi\u015ftirilmi\u015f bir resmi yaz\u0131l\u0131m bilgisayara gizlice y\u00fckleniyor. Ard\u0131ndan su\u00e7lular bu yaz\u0131l\u0131m sayesinde bilgisayara eri\u015fip tedarik, finans ve muhasebe faaliyetlerine ili\u015fkin belgeleri ve yaz\u0131l\u0131mlar\u0131 inceleyebiliyor. Ayr\u0131ca sald\u0131rganlar kendilerine para aktarmak amac\u0131yla \u00f6deme faturalar\u0131ndaki zorunlu k\u0131s\u0131mlar\u0131 de\u011fi\u015ftirmek gibi farkl\u0131 finansal doland\u0131r\u0131c\u0131l\u0131k y\u00f6ntemleri de ar\u0131yordu.<\/p>\n<p>Bunlar\u0131n yan\u0131 s\u0131ra, su\u00e7lular kurumsal a\u011fa yay\u0131lmak i\u00e7in yerel y\u00f6netici haklar\u0131 veya kullan\u0131c\u0131 kimlik do\u011frulama verileri ve Windows hesaplar\u0131 gibi ek verilere ya da yetkilere ihtiya\u00e7 duyduklar\u0131nda, her bir kurban i\u00e7in \u00f6zel olarak haz\u0131rlanm\u0131\u015f yeni zararl\u0131 yaz\u0131l\u0131m gruplar\u0131 da y\u00fckleyebiliyordu. Bunlar\u0131n aras\u0131nda casusluk yaz\u0131l\u0131mlar\u0131, sald\u0131rganlar\u0131n ele ge\u00e7irdikleri sistemlerdeki kontrol\u00fcn\u00fc geni\u015fleten uzaktan y\u00f6netim ara\u00e7lar\u0131 ve i\u015fletim sistemindeki a\u00e7\u0131klardan yararlanan zararl\u0131 yaz\u0131l\u0131mlar bulunuyordu. Windows hesaplar\u0131ndan veri toplanmas\u0131n\u0131 sa\u011flayan Mimikatz arac\u0131 da bunlardan biriydi.<\/p>\n<p><strong>Kaspersky Lab G\u00fcvenlik Uzman\u0131 Vyacheslav Kopeytsev<\/strong>,<em> \u201cSald\u0131rganlar Rusya\u2019daki end\u00fcstri \u015firketlerine a\u00e7\u0131k bir ilgi g\u00f6sterdi. Tecr\u00fcbelerimize g\u00f6re bunun ard\u0131nda, bu sekt\u00f6rdeki siber g\u00fcvenlik fark\u0131ndal\u0131\u011f\u0131n\u0131n finsansal hizmetler gibi di\u011fer alanlarda oldu\u011fu kadar y\u00fcksek olmamas\u0131 yat\u0131yor. Bu da yaln\u0131zca Rusya\u2019da de\u011fil t\u00fcm d\u00fcnyada end\u00fcstri \u015firketlerini siber su\u00e7lular i\u00e7in k\u00e2rl\u0131 birer hedef haline getiriyor.\u201d <\/em>dedi.<\/p>\n<p>Kaspersky Lab ara\u015ft\u0131rmac\u0131lar\u0131, hedefli kimlik sald\u0131r\u0131lar\u0131ndan korunmak i\u00e7in kullan\u0131c\u0131lara \u015fu temel \u00f6nlemleri almalar\u0131n\u0131 tavsiye ediyor:<\/p>\n<p>&#8211; Kimlik av\u0131 te\u015febb\u00fcslerini tespit edip engellemek i\u00e7in \u00f6zel i\u015flevlere sahip olan g\u00fcvenlik \u00e7\u00f6z\u00fcmleri kullan\u0131n. \u0130\u015fletmeler ofislerindeki e-posta sistemlerini Kaspersky Endpoint Security for Business paketindeki hedefli uygulamalarla koruyabiliyor. Kaspersky Security for Microsoft Office 365 ise Microsoft Office 365 paketindeki bulut tabanl\u0131 e-posta servisi Exchange Online\u2019\u0131n da koruma alt\u0131na al\u0131nmas\u0131na yard\u0131mc\u0131 oluyor.<\/p>\n<p>&#8211; Beceri de\u011ferlendirmesi ve temsili kimlik av\u0131 sald\u0131r\u0131lar\u0131yla desteklenen ve oyuna benzer hale getirilen e\u011fitimlerle g\u00fcvenlik fark\u0131ndal\u0131\u011f\u0131n\u0131 art\u0131r\u0131n. Kaspersky Lab m\u00fc\u015fterileri, Kaspersky G\u00fcvenlik Fark\u0131ndal\u0131\u011f\u0131 E\u011fitimleri hizmetinden faydalanabilirler.<\/p>\n<p>Finansal kimlik av\u0131 tehdidi hakk\u0131nda daha fazla bilgi edinmek i\u00e7in <a href=\"https:\/\/ics-cert.kaspersky.com\/\">ICS-CERT.kaspersky.com<\/a> adresindeki blog yaz\u0131s\u0131n\u0131 okuyabilirsiniz.<\/p>","protected":false},"excerpt":{"rendered":"<p>Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.Kaspersky Lab ara\u015ft\u0131rmac\u0131lar\u0131, siber su\u00e7lular\u0131n para kazanma amac\u0131yla tasarlad\u0131\u011f\u0131 yeni bir finansal hedefli kimlik av\u0131 e-postas\u0131 dalgas\u0131n\u0131 tespit etti. Resmi tedarik ve muhasebe [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":76988,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[46,53,44],"tags":[1128,19761,23219,67,1009,23311,37216,38611,34935,2388,34936],"views":723,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/76987"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=76987"}],"version-history":[{"count":1,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/76987\/revisions"}],"predecessor-version":[{"id":76989,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/76987\/revisions\/76989"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/76988"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=76987"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=76987"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=76987"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}