T\u00fcrkiye\u2019de siber g\u00fcvenlik alan\u0131nda \u00f6nemli projelere ve yerli \u00fcr\u00fcnlere imza atan STM\u2019nin Teknolojik D\u00fc\u015f\u00fcnce Merkezi \u201cThinkTech\u201din Ekim-Aral\u0131k 2019 tarihlerini kapsayan yeni Siber Tehdit Durum Raporu\u2019nu a\u00e7\u0131klad\u0131. Raporda 2019 y\u0131l\u0131nda ger\u00e7ekle\u015fen siber tehditlere dikkat \u00e7ekilirken; 2020 y\u0131l\u0131 i\u00e7in yeni siber sald\u0131r\u0131 \u00f6ng\u00f6r\u00fcleri de payla\u015f\u0131ld\u0131.<\/p>\n
STM ThinkTech\u2019in son raporuna g\u00f6re; sa\u011fl\u0131k sekt\u00f6r\u00fcne, kritik alt yap\u0131lar ile end\u00fcstriyel sistemlere, mobil cihazlara, se\u00e7im verilerine, IoT cihazlara siber sald\u0131r\u0131larda art\u0131\u015f g\u00f6zlenecek. Ayr\u0131ca rapor, T\u00fcrkiye Cumhuriyeti vatanda\u015flar\u0131n\u0131n s\u0131kl\u0131kla kulland\u0131\u011f\u0131 e-Devlet uygulamas\u0131 taklitlerinin de siber sald\u0131rganlar\u0131n yeni y\u00f6ntemi oldu\u011funu ortaya \u00e7\u0131kard\u0131.<\/p>\n
Siber tehditler ve bu tehditlerden kaynakl\u0131 siber olaylar\u0131 derinlemesine ara\u015ft\u0131rarak y\u0131l boyunca kamuoyuyla payla\u015fan STM Uzmanlar\u0131 2020 y\u0131l\u0131nda en \u00e7ok sa\u011fl\u0131k sekt\u00f6r\u00fcn\u00fcn etkilenece\u011fini, ayr\u0131ca enerji, haberle\u015fme, ula\u015f\u0131m gibi kritik alt yap\u0131lara ve end\u00fcstriyel sistemlere y\u00f6nelik sald\u0131r\u0131 kampanyalar\u0131n\u0131n da risk olu\u015fturaca\u011f\u0131n\u0131 belirtiyor. 2019 y\u0131l\u0131nda fidyecilik sald\u0131r\u0131s\u0131na en \u00e7ok maruz kalan sa\u011fl\u0131k sekt\u00f6r\u00fcnde kullan\u0131lan medikal sistemlere yap\u0131labilecek sald\u0131r\u0131lara da de\u011finen Siber Tehdit Durum Raporu, olu\u015facak zararlar\u0131n maddi boyutunun art\u0131\u015f g\u00f6stermesinin yan\u0131 s\u0131ra kan de\u011ferleri ve DNA bilgileri gibi kritik verilerin if\u015fa olmas\u0131 tehdidiyle manevi zarar\u0131n da ciddi bir seviyeye ula\u015faca\u011f\u0131n\u0131 \u00f6ng\u00f6r\u00fcyor.<\/p>\n
Elektronik se\u00e7im \u00e7al\u0131\u015fmalar\u0131na y\u00f6nelik sald\u0131r\u0131lar\u0131n artaca\u011f\u0131na dikkat \u00e7ekilen raporda, 2020 y\u0131l\u0131nda ge\u00e7ilece\u011fi \u00f6ng\u00f6r\u00fclen 5G teknolojisiyle birlikte yeni tehdit t\u00fcrleri ve zafiyetlerin ke\u015ffedilmesine ba\u011fl\u0131 olarak kablosuz a\u011f sald\u0131r\u0131lar\u0131n\u0131n s\u0131kl\u0131kla g\u00fcndeme gelece\u011fi vurgulan\u0131yor. Mobil cihazlar ve bulut sistemlerini tehdit eden sahte uygulamalar bu y\u0131l da g\u00fcndemde kal\u0131rken, g\u00fcnl\u00fck ya\u015famda kullan\u0131lan ak\u0131ll\u0131 cihazlar, sald\u0131r\u0131 ve casusluk kampanyalar\u0131n\u0131n yeni hedefi haline geliyor.<\/p>\n
e-Devlet taklitleri \u00fczerinden T\u00fcrkiye hedef al\u0131n\u0131yor<\/p>\n
STM\u2019nin yeni raporu, T\u00fcrkiye Cumhuriyeti vatanda\u015flar\u0131n\u0131n s\u0131kl\u0131kla kulland\u0131\u011f\u0131 e-Devlet uygulamas\u0131 taklitlerinin, siber sald\u0131rganlar\u0131n yeni y\u00f6ntemi oldu\u011funu ortaya \u00e7\u0131kard\u0131. Sahte uygulamalar kategorisinde son \u00e7eyrekte en \u00e7ok dikkat \u00e7eken ve tehlike olu\u015fturan sald\u0131r\u0131; hemen hemen herkesin ki\u015fisel bilgilerine eri\u015fim sa\u011flad\u0131\u011f\u0131 \u201ce-Devlet\u201d uygulamas\u0131n\u0131 taklit eden bir zararl\u0131 yaz\u0131l\u0131m oldu. T\u00fcrkiye\u2019yi hedef alan bu oltalama sald\u0131r\u0131s\u0131, ge\u00e7ti\u011fimiz Eyl\u00fcl ay\u0131nda k\u0131sa s\u00fcreli olarak Play Store\u2019da yer ald\u0131.<\/p>\n
Sahte uygulama \u00f6rneklerinin say\u0131s\u0131n\u0131n g\u00fcn\u00fcm\u00fczde giderek artmas\u0131, tehlikeyi de b\u00fcy\u00fct\u00fcyor. e-Devlet\u2019e ek olarak; en \u00e7ok tercih edilen taray\u0131c\u0131lardan biri olan Chrome ile pop\u00fcler elektronik kitap okuma uygulamalar\u0131ndan biri olan \u201cE-Book Reader\u201d\u2019\u0131 taklit eden bir zararl\u0131n\u0131n bir\u00e7ok kullan\u0131c\u0131y\u0131 tehdit etti\u011fi de tespit edildi.<\/p>\n
Kart bilgileri if\u015fa oldu<\/p>\n
T\u00fcrk bankalar\u0131na ait 455 binden fazla kart bilgisinin \u201cdark web\u201dde sat\u0131\u015fa \u00e7\u0131kar\u0131lmas\u0131, 2019 y\u0131l\u0131n\u0131n son \u00e7eyre\u011finde g\u00fcndemi sarsan siber g\u00fcvenlik olaylar\u0131ndan biri oldu. 28 Ekim ile 27 Kas\u0131m tarihleri aras\u0131nda ger\u00e7ekle\u015fen s\u0131z\u0131nt\u0131y\u0131 analiz eden Siber Tehdit Durum Raporu, kart bilgilerinin farkl\u0131 bankalara ait olmas\u0131ndan dolay\u0131 ilgili s\u0131z\u0131nt\u0131n\u0131n bankalardan de\u011fil online servis veren platformlardan kaynakland\u0131\u011f\u0131n\u0131 belirtti. Kullan\u0131c\u0131lar\u0131 uyaran rapor; bu t\u00fcr s\u0131z\u0131nt\u0131lardan etkilenmemek i\u00e7in kartlar\u0131n al\u0131\u015fveri\u015f yap\u0131lmad\u0131\u011f\u0131 m\u00fcddet\u00e7e yurt d\u0131\u015f\u0131 ve internet kullan\u0131m\u0131na kapat\u0131lmas\u0131n\u0131n yararl\u0131 olaca\u011f\u0131n\u0131 vurgulad\u0131.<\/p>\n
Evimizdeki modemler risk alt\u0131nda<\/p>\n
Siber Tehdit Durum Raporu, IoT (nesnelerin interneti) cihazlarla birlikte modemler i\u00e7in de bir\u00e7ok tehdit bar\u0131nd\u0131ran Mirai zararl\u0131 yaz\u0131l\u0131m\u0131na kar\u015f\u0131 uyar\u0131yor. Mirai sald\u0131r\u0131s\u0131nda, cihaz\u0131n ele ge\u00e7irilerek uzaktan kod \u00e7al\u0131\u015ft\u0131r\u0131lmas\u0131n\u0131 sa\u011flayan zararl\u0131 Gafgyt yaz\u0131l\u0131m\u0131n\u0131n 2019 y\u0131l\u0131nda ortaya \u00e7\u0131kan yeni s\u00fcr\u00fcm\u00fc, k\u00fc\u00e7\u00fck ofis ve ev y\u00f6nlendiricileri \u00fczerindeki tehlikenin boyutunu b\u00fcy\u00fct\u00fcyor. Rapora g\u00f6re d\u00fcnyada bu istismarlara kar\u015f\u0131 potansiyel olarak hassas 32 binden fazla Wi-Fi y\u00f6nlendiricisi bulunuyor. Bu zararl\u0131dan korunabilmek i\u00e7in modemlerin g\u00fcvenlik g\u00fcncellemelerinin yap\u0131lmas\u0131 ya da uygun durumlarda modemlerin \u00fcst versiyonlara ge\u00e7irilmesi gerekiyor. IoT cihazlarda kullan\u0131lan en yayg\u0131n ve \u00f6nemli kablosuz ileti\u015fim teknolojilerinden Zigbee protokol\u00fcn\u00fcn sahip oldu\u011fu g\u00fcvenlik a\u00e7\u0131kl\u0131klar\u0131na kar\u015f\u0131 \u00f6nlemler almak da kullan\u0131c\u0131lar\u0131n mahremiyetini korumak i\u00e7in b\u00fcy\u00fck \u00f6nem arz ediyor.<\/p>\n
Bilgi s\u0131zd\u0131ran ak\u0131ll\u0131 cihazlara dikkat<\/p>\n
2020 y\u0131l\u0131nda d\u00fcnya \u00fczerinde 20 milyar IoT cihaz\u0131 olaca\u011f\u0131 tahmin edilirken, ayn\u0131 zamanda hassas ve ki\u015fiye \u00f6zel verilerin s\u0131zd\u0131r\u0131lmas\u0131na y\u00f6nelik b\u00fcy\u00fck bir tehlike ortaya \u00e7\u0131k\u0131yor. Rapora g\u00f6re; \u0130ngiltere ve ABD\u2019de iki ayr\u0131 laboratuvarda yap\u0131lan veri ihlali testleri, cihazlar\u0131n baz\u0131lar\u0131n\u0131n beklenmedik video ve ses kay\u0131tlar\u0131 ald\u0131\u011f\u0131n\u0131 ortaya \u00e7\u0131kard\u0131. Ayr\u0131ca ABD ortam\u0131nda test edilen cihazlar\u0131n y\u00fczde 56\u2019s\u0131n\u0131n, \u0130ngiltere de ise y\u00fczde 83,8\u2019inin kendi b\u00f6lgeleri d\u0131\u015f\u0131ndaki cihaz ya da uygulamalarla etkile\u015fime girdi\u011fi g\u00f6zlemlendi.<\/p>\n
2019 y\u0131l\u0131nda CTF r\u00fczgar\u0131 5. kez esti<\/p>\n
STM\u2019nin siber g\u00fcvenlik alan\u0131nda fark\u0131ndal\u0131k olu\u015fturmak ve nitelikli insan kayna\u011f\u0131 yeti\u015fmesine katk\u0131 sunmak \u00fczere ger\u00e7ekle\u015ftirdi\u011fi giri\u015fimlerin ba\u015f\u0131nda yer alan CTF (Captrue The Flag) yar\u0131\u015fmas\u0131, 2019 y\u0131l\u0131nda 5. kez ger\u00e7ekle\u015ftirilerek ba\u015far\u0131s\u0131n\u0131 ve hedeflerini ileri ta\u015f\u0131maya devam etti. Siber g\u00fcvenli\u011fin geli\u015fim yol haritas\u0131nda \u00f6\u011fretici, geli\u015ftirici ve ara\u015ft\u0131rmaya y\u00f6neltici \u00f6zellikleriyle \u00f6nemli bir rol \u00fcstlenen yar\u0131\u015fmaya 2019 y\u0131l\u0131nda rekor bir kat\u0131l\u0131m ger\u00e7ekle\u015fti. Toplam 197 tak\u0131m ve 717 ki\u015finin kat\u0131ld\u0131\u011f\u0131 online yar\u0131\u015fmada finale kalan 50 farkl\u0131 tak\u0131mdan yakla\u015f\u0131k 200 ki\u015fi 8 saat boyunca k\u0131yas\u0131ya m\u00fccadele etti.<\/p>\n
Gen\u00e7lerin yo\u011fun ilgi g\u00f6sterdi\u011fi yar\u0131\u015fmada, STM\u2019nin geli\u015ftirdi\u011fi zafiyet avc\u0131l\u0131\u011f\u0131 platformu Bugshield de tan\u0131t\u0131ld\u0131. S\u00fcrekli s\u0131zma testi metodolojisi ile istismar edilebilir siber g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 bulma ve anl\u0131k raporlama hizmetleri sunan Bugshield, kurum kaynaklar\u0131n\u0131n korunmas\u0131 ve siber sald\u0131rganlardan \u00f6nce h\u0131zl\u0131 aksiyon al\u0131nmas\u0131 ad\u0131na kritik bir \u00e7\u00f6z\u00fcm sunuyor.<\/p>\n","protected":false},"excerpt":{"rendered":"
T\u00dcRK\u0130YE\u2019DE S\u0130BER G\u00dcVENL\u0130K ALANINDA \u00d6NEML\u0130 PROJELERE VE YERL\u0130 \u00dcR\u00dcNLERE \u0130MZA ATAN STM\u2019N\u0130N TEKNOLOJ\u0130K D\u00dc\u015e\u00dcNCE MERKEZ\u0130 \u201cTH\u0130NKTECH\u201d\u0130N EK\u0130M-ARALIK 2019 TAR\u0130HLER\u0130N\u0130 KAPSAYAN YEN\u0130 S\u0130BER TEHD\u0130T DURUM RAPORU\u2019NU A\u00c7IKLADI. RAPORDA 2019 YILINDA GER\u00c7EKLE\u015eEN S\u0130BER TEHD\u0130TLERE D\u0130KKAT \u00c7EK\u0130L\u0130RKEN; 2020 YILI \u0130\u00c7\u0130N YEN\u0130 S\u0130BER SALDIRI \u00d6NG\u00d6R\u00dcLER\u0130 DE PAYLA\u015eILDI.<\/p>\n","protected":false},"author":1,"featured_media":258346,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[1],"tags":[3699,3763,6606,8593,33333,8054,87],"class_list":["post-258345","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-genel","tag-acikladi","tag-durum","tag-raporunu","tag-siber","tag-stm","tag-tehdit","tag-yeni"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.tvturk.com\/wp-content\/uploads\/2020\/01\/stm-yeni-siber-tehdit-durum-raporunu-acikladi_249ffc0.jpg?fit=1000%2C666","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paKIfm-15cR","_links":{"self":[{"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/posts\/258345","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/comments?post=258345"}],"version-history":[{"count":0,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/posts\/258345\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/media\/258346"}],"wp:attachment":[{"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/media?parent=258345"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/categories?post=258345"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.tvturk.com\/index.php\/wp-json\/wp\/v2\/tags?post=258345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}