{"id":94060,"date":"2019-06-10T12:28:33","date_gmt":"2019-06-10T09:28:33","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=94060"},"modified":"2019-06-10T15:19:31","modified_gmt":"2019-06-10T12:19:31","slug":"enerji-sektoru-5inci-jenerasyon-siber-saldirilara-hazir-mi","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/enerji-sektoru-5inci-jenerasyon-siber-saldirilara-hazir-mi\/","title":{"rendered":"(Turkish) Enerji Sekt\u00f6r\u00fc 5’inci Jenerasyon Siber Sald\u0131r\u0131lara Haz\u0131r m\u0131?"},"content":{"rendered":"

Sorry, this entry is only available in Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p>

<\/p>\n

2015 y\u0131l\u0131nda Ukrayna\u2019da yakla\u015f\u0131k olarak 230 bin ki\u015fiyi 6 saat boyunca elektriksiz b\u0131rakan siber sald\u0131r\u0131n\u0131n bir e-postada gelen dosya ekiyle ba\u015flad\u0131\u011f\u0131n\u0131 biliyor muydunuz?<\/h1>\n

 <\/p>\n

\"\"Teknolojinin geli\u015fmesi ve enerji sekt\u00f6r\u00fcn\u00fcn bu geli\u015fmelere adapte olmas\u0131yla birlikte nesnelerin interneti kendini sekt\u00f6r\u00fcn altyap\u0131s\u0131nda g\u00f6stermeye ba\u015flad\u0131. Valf kontrolleri, bask\u0131 sens\u00f6rleri, s\u0131cakl\u0131k sens\u00f6rleri ve benzeri gibi internete ba\u011fl\u0131 cihazlar\u0131n kullan\u0131m\u0131n\u0131n artmas\u0131na paralel olarak bu altyap\u0131n\u0131n siber zay\u0131f noktalar\u0131nda da bir art\u0131\u015f g\u00f6r\u00fcl\u00fcyor. Truva at\u0131, vir\u00fcs ve e-doland\u0131r\u0131c\u0131l\u0131k sald\u0131r\u0131lar\u0131 her g\u00fcn ger\u00e7ekle\u015firken, “Spear-phishing” ad\u0131 verilen y\u00f6ntemle art\u0131k siber sald\u0131rganlar kurbanlar\u0131n\u0131 tek tek se\u00e7iyor ve enerji sekt\u00f6r\u00fc bu listenin ba\u015f\u0131nda yer alan hedeflerden biri konumunda.<\/h1>\n

\u015eirketlerdeki y\u00fcksek profilli \u00e7al\u0131\u015fanlar dahil olmak \u00fczere sosyal medya ve dark web ke\u015ffi arac\u0131l\u0131\u011f\u0131yla enerji sekt\u00f6r \u00e7al\u0131\u015fanlar\u0131 2. Ve 3. Siber sald\u0131r\u0131 jenerasyonlar\u0131 ile hedef al\u0131n\u0131p kolayl\u0131kla sald\u0131r\u0131 kurban\u0131 olabiliyor. Bu da asl\u0131nda kurumsaldan \u00f6te bireysel olarak siber sald\u0131r\u0131lar hakk\u0131nda bilin\u00e7lenmenin \u00e7ok \u00f6nemli oldu\u011funu ortaya koyuyor.<\/p>\n

\"\"<\/p>\n

2015 y\u0131l\u0131nda Ukrayna\u2019da bir\u00e7ok insan\u0131 saatler boyunca elektriksiz b\u0131rakan siber sald\u0131r\u0131 bir e-postadaki Word eklentisiyle ba\u015flad\u0131. Microsoft Word dosyas\u0131na ili\u015ftirilen BlackEnergy Truva Atlar\u0131 (Trojan Horse) bir Macro eklentisi etkinle\u015ftirme vaadiyle bili\u015fim a\u011f\u0131 idarecilerinin bilgisayar\u0131na yerle\u015fti ve ula\u015ft\u0131\u011f\u0131 son noktada binlerce insan\u0131 karanl\u0131kta b\u0131rakmay\u0131 ba\u015fard\u0131.<\/p>\n

Kontrol, valf ve par\u00e7a sa\u011flay\u0131c\u0131 ta\u015feron \u015firketler genellikle finansal sistemlerine kar\u015f\u0131 yap\u0131lan finansal sald\u0131r\u0131lar ve e-posta yoluyla hedefleniyor. Bu da bu \u015firketlerdeki siber sald\u0131r\u0131 bilincinin d\u00f6nemin siber tehlikelerinin \u015fiddetini kavrayamam\u0131\u015f olmas\u0131ndan dolay\u0131 zararla sonu\u00e7lan\u0131yor.<\/p>\n

Enerji end\u00fcstrisi ayn\u0131 zamanda da\u011f\u0131t\u0131k hizmet aksatma ad\u0131 verilen DDoS sald\u0131r\u0131lar\u0131na da maruz kal\u0131yor. Ge\u00e7ici olarak hizmet ve operasyonlar\u0131 etkisiz hale getiren b\u00fcy\u00fck \u00f6l\u00e7ekli DDoS sald\u0131r\u0131lar\u0131 genellikle enerji \u015febekelerine kar\u015f\u0131 ger\u00e7ekle\u015ftiriliyor. \u0130\u00e7inde bulundu\u011fumuz 5. Jenerasyon siber sald\u0131r\u0131lar\u0131 d\u00f6neminde, siber sald\u0131rganlar petrol\u00fcn akmas\u0131n\u0131 engelleyecek \u015fekilde\u00a0 sistematik olarak petrol boru hatlar\u0131n\u0131 hedefliyor ve hem uluslararas\u0131 hem de yerel tedari\u011fi engellemeye \u00e7al\u0131\u015f\u0131yor. PDoS sald\u0131r\u0131lar\u0131 ise kal\u0131c\u0131 hizmet aksatmaya sebep oluyor ve fiziksel ekipmanlar\u0131n ve yap\u0131lar\u0131n bozulmas\u0131na sebep olarak hizmetleri i\u015flem d\u0131\u015f\u0131 b\u0131rak\u0131yor ve\/veya \u00f6nemli verileri \u00e7al\u0131yor ve sistemlerden siliyor.<\/p>\n

Siber sald\u0131r\u0131lar\u0131 tespit etmek ve etkin bir \u015fekilde engelleyebilmek i\u00e7in enerji \u015firketleri e-posta ve a\u011f tehdit de\u011ferlendirmelerini ba\u011f\u0131ms\u0131z bir firma arac\u0131l\u0131\u011f\u0131yla ger\u00e7ekle\u015ftirmeli, eri\u015fim kontrollerini g\u00f6zden ge\u00e7irme ve daha kapsaml\u0131 denetimler ger\u00e7ekle\u015ftirmelidir. \u015eirket a\u011f\u0131nda VPN kullan\u0131m\u0131<\/a> mevcutsa ve ayr\u0131k t\u00fcnelleme s\u00f6z konusuysa bir \u015fifre resetleme \u00f6nlemi uygulanmal\u0131 ve bu a\u011flar s\u00fcreli olarak kullan\u0131ma tabi tutulmal\u0131d\u0131r. Uzaktan ba\u011flanan \u015firket \u00e7al\u0131\u015fanlar\u0131n\u0131n kimli\u011fini do\u011frulamak i\u00e7in \u00e7oklu kimlik do\u011frulama y\u00f6ntemleri kullan\u0131lmal\u0131d\u0131r.<\/p>\n

\u0130leri Sald\u0131r\u0131 Tespit Sistemleri \u0130le \u015eirket A\u011flar\u0131 7\/24 \u0130zlenmelidir<\/h2>\n

Ukrayna\u2019da ger\u00e7ekle\u015fen siber sald\u0131r\u0131dan \u00e7\u0131kar\u0131lmas\u0131 gereken ders \u00e7al\u0131\u015fanlar\u0131n siber sald\u0131r\u0131lar konusunda e\u011fitilmesidir. Y\u00f6netim kurulu da dahil olmak \u00fczere \u015firketteki her \u00e7al\u0131\u015fan\u0131n bireysel olarak siber sald\u0131r\u0131lar konusunda bilin\u00e7lenmesine \u00f6nem verilmeli ve bu y\u00f6nde \u015firket-i\u00e7i e\u011fitimler ger\u00e7ekle\u015ftirilmelidir. \u015eirket-i\u00e7i ve \u015firket-d\u0131\u015f\u0131 kriz durumlar\u0131 i\u00e7in ileti\u015fim planlar\u0131 yarat\u0131lmal\u0131 ve siber sald\u0131r\u0131lara kar\u015f\u0131 nas\u0131l cevap verilece\u011fi konusunda bir sald\u0131r\u0131 m\u00fcdahale plan\u0131 olu\u015fturulmal\u0131d\u0131r. \u015eirket m\u00fcdahale kapasitesini \u00f6l\u00e7mek ve zay\u0131f noktalar\u0131 tespit etmek i\u00e7in m\u00fcdahale tatbikatlar\u0131 ger\u00e7ekle\u015ftirilmelidir. M\u00fcdahale analizi ger\u00e7ekle\u015ftiren \u00e7al\u0131\u015fanlar\u0131n spam e-postalar\u0131 ya da dosya eklerini kontrol etmesi ve etkilenen sistemlerden risk g\u00f6stergelerini<\/a> ortaya \u00e7\u0131karmak i\u00e7in sandboxing<\/a> gibi teknolojilere sahip oldu\u011fundan emin olunmas\u0131 gerekmektedir.<\/p>\n

Her \u00f6l\u00e7ekteki enerji \u015firketi siber g\u00fcvenlik \u00f6nlemlerini \u00f6nceliklendirmeli ve i\u00e7inde bulundu\u011fumuz 5. Siber sald\u0131r\u0131 jenerasyonunun sald\u0131r\u0131 vekt\u00f6rlerinin her \u00e7e\u015fidine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmal\u0131d\u0131r.<\/p>","protected":false},"excerpt":{"rendered":"

Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language. 2015 y\u0131l\u0131nda Ukrayna\u2019da yakla\u015f\u0131k olarak 230 bin ki\u015fiyi 6 saat boyunca elektriksiz b\u0131rakan siber sald\u0131r\u0131n\u0131n bir e-postada gelen dosya ekiyle ba\u015flad\u0131\u011f\u0131n\u0131 biliyor […]<\/p>\n","protected":false},"author":1,"featured_media":94063,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[51,53],"tags":[52057,52052,52044,52054,52059,52058,52061,19638,140,52047,26353,67,1009,52046,52043,52056,19577,52055,52053,46249,15349,52050,52045,52048,2584,52051,52060,52049],"views":822,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/94060"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=94060"}],"version-history":[{"count":0,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/94060\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/94063"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=94060"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=94060"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=94060"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}