{"id":3617,"date":"2022-12-28T09:54:48","date_gmt":"2022-12-28T06:54:48","guid":{"rendered":"https:\/\/sakarya.news\/?p=3617"},"modified":"2022-12-28T09:54:51","modified_gmt":"2022-12-28T06:54:51","slug":"2022-yilinin-en-buyuk-10-siber-saldirisi","status":"publish","type":"post","link":"https:\/\/haber.kocaalibilisim.com\/index.php\/2022\/12\/28\/2022-yilinin-en-buyuk-10-siber-saldirisi\/","title":{"rendered":"2022 y\u0131l\u0131n\u0131n en b\u00fcy\u00fck 10 siber sald\u0131r\u0131s\u0131"},"content":{"rendered":"\n

Dijital g\u00fcvenlikte d\u00fcnya lideri olan ESET, son 12 ayda bir\u00e7ok hedef noktay\u0131 etkileyen, en k\u00f6t\u00fc bilgisayar korsanl\u0131\u011f\u0131 ve veri ihlali olaylar\u0131n\u0131n neler oldu\u011funu inceledi. Veriler 2022 y\u0131l\u0131nda y\u0131k\u0131c\u0131 siber sald\u0131r\u0131larda azalma olmad\u0131\u011f\u0131n\u0131 g\u00f6steriyor. \u00a0<\/p>\n\n\n\n

2022 y\u0131l\u0131nda k\u00fcresel ekonomi, bir krizden di\u011ferine s\u00fcr\u00fcklenerek alt\u00fcst oldu. COVID-19 bir\u00e7ok b\u00f6lgede azalmaya ba\u015flad\u0131\u011f\u0131nda, bunun yerini artan enerji faturalar\u0131, y\u00fckselen enflasyon ve hayat pahal\u0131l\u0131\u011f\u0131 ald\u0131. Bunlar\u0131n bir k\u0131sm\u0131 Rusya’n\u0131n Ukrayna’y\u0131 i\u015fgal etmesinin sonucuydu. Bu geli\u015fmeler finansal g\u00fcd\u00fcml\u00fc ve devlet destekli tehdit akt\u00f6rleri i\u00e7in yeni f\u0131rsatlar\u0131n kap\u0131lar\u0131n\u0131 a\u00e7t\u0131. Bu akt\u00f6rler, h\u00fck\u00fcmetleri, hastaneleri, kripto para \u015firketlerini ve bir\u00e7ok di\u011fer kurulu\u015fu hedef ald\u0131. Haz\u0131rlanan liste belli bir s\u0131ralama \u00f6l\u00e7\u00fct\u00fc ta\u015f\u0131m\u0131yor. Uzmanlar, listeyi Ukrayna\u2019y\u0131 hedef alan ve hemen ard\u0131ndan d\u00fcnya genelinde kar\u015f\u0131la\u015f\u0131lan k\u00f6t\u00fc ama\u00e7l\u0131 siber sald\u0131r\u0131lar\u0131 g\u00f6z \u00f6n\u00fcne alarak olu\u015fturduklar\u0131n\u0131n alt\u0131n\u0131 \u00e7iziyorlar. <\/p>\n\n\n\n

    \n
  1. (Siber) sald\u0131r\u0131 alt\u0131ndaki Ukrayna: <\/strong>Rusya i\u015fgalinin ba\u015flar\u0131nda ESET ara\u015ft\u0131rmac\u0131lar\u0131, \u00fclkenin elektrik \u015febekesini hedefleyen ve y\u00fcksek voltajl\u0131 elektrik trafo merkezlerine kar\u015f\u0131 kullan\u0131lan Sandworm isimli y\u0131k\u0131c\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131 da i\u00e7eren bir sald\u0131r\u0131y\u0131 etkisiz k\u0131lmak i\u00e7in CERT-UA ile yak\u0131n bir \u015fekilde i\u015fbirli\u011fi yapt\u0131. 2016\u2019da Ukrayna\u2019da elektri\u011fi kesmek amac\u0131yla bir grup taraf\u0131ndan kullan\u0131lan k\u00f6t\u00fc \u015f\u00f6hrete sahip bir yaz\u0131l\u0131m t\u00fcr\u00fcnden sonra ESET\u2019in Industroyer2 olarak adland\u0131rd\u0131\u011f\u0131 s\u00f6z konusu yaz\u0131l\u0131m, y\u0131k\u0131c\u0131 CaddyWiper veri temizleyicisinin yeni bir t\u00fcr\u00fc ile birlikte b\u00fcy\u00fck ihtimalle sald\u0131r\u0131n\u0131n arkas\u0131ndaki grubun izini gizlemek, olaya m\u00fcdahale edilmesini yava\u015flatmak ve elektrik firmas\u0131 operat\u00f6rlerinin ICS konsollar\u0131n\u0131n kontrol\u00fcn\u00fc tekrar sa\u011flamas\u0131n\u0131 \u00f6nlemek i\u00e7in kullan\u0131ld\u0131. <\/li>\n\n\n\n
  2. Daha \u00e7ok veri temizleyici sald\u0131r\u0131s\u0131:<\/strong> Uzmanlara g\u00f6re CaddyWiper, Rusya i\u015fgalinin hemen \u00f6ncesinde veya ilk haftalar\u0131nda Ukrayna\u2019da tespit edilen tek y\u0131k\u0131c\u0131 veri temizleyici de\u011fil. 23\u015eubat\u2019ta ESET telemetrisi, Ukrayna\u2019daki birka\u00e7 kuruma ait y\u00fczlerce cihazda HermeticWiper veri temizleyicisini tespit etti. Ertesi g\u00fcn, Ukrayna h\u00fck\u00fcmet a\u011f\u0131na kar\u015f\u0131 ikinci bir y\u0131k\u0131c\u0131, veri silme sald\u0131r\u0131s\u0131 ba\u015flad\u0131 ve bu sefer IsaacWiper ortaya \u00e7\u0131kt\u0131.<\/li>\n\n\n\n
  3. \u0130nternetin yava\u015flat\u0131lmas\u0131:<\/strong> \u0130\u015fgalden yakla\u015f\u0131k bir saat \u00f6nce ticari uydu internet \u015firketi Viasat\u2019a y\u00f6nelik ger\u00e7ekle\u015ftirilen b\u00fcy\u00fck bir siber sald\u0131r\u0131, Ukrayna\u2019daki ve Avrupa\u2019n\u0131n di\u011fer yerlerindeki y\u00fczlerce insan\u0131n kulland\u0131\u011f\u0131 geni\u015f bantl\u0131 internet hizmetini aksatt\u0131 ve geride bir i\u015fe yaramayan binlerce modem b\u0131rakt\u0131. Uydu a\u011f sisteminin y\u00f6netim b\u00f6l\u00fcm\u00fcne eri\u015fim sa\u011flamak amac\u0131yla yanl\u0131\u015f yap\u0131land\u0131r\u0131lm\u0131\u015f bir VPN hizmetinin kullan\u0131ld\u0131\u011f\u0131 s\u00f6z konusu sald\u0131r\u0131 ile i\u015fgalin ilk saatlerinde Ukrayna komuta kademesinin haberle\u015fme yeteneklerinin bozulmas\u0131n\u0131n ama\u00e7land\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fcl\u00fcyor. Ancak bu sald\u0131r\u0131n\u0131n etkileri sadece Ukrayna ile s\u0131n\u0131rl\u0131 kalmad\u0131.<\/li>\n\n\n\n
  4. Kosta Rika\u2019da Conti sald\u0131r\u0131s\u0131: <\/strong>Bu y\u0131l kay\u0131t d\u0131\u015f\u0131 siber su\u00e7 d\u00fcnyas\u0131n\u0131n bir b\u00fcy\u00fck oyuncusu da hizmet olarak fidye yaz\u0131l\u0131m\u0131n\u0131 (RaaS) kullanan Conti grubu oldu. Bu grup, en ciddi sald\u0131r\u0131lar\u0131ndan birini k\u00fc\u00e7\u00fck bir G\u00fcney Amerika \u00fclkesi olan Kosta Rika\u2019ya kar\u015f\u0131 ger\u00e7ekle\u015ftirdi.  H\u00fck\u00fcmet bu sars\u0131c\u0131 sald\u0131r\u0131y\u0131 \u201csiber ter\u00f6rizm\u201d olarak adland\u0131rd\u0131ktan sonra ulusal acil durum ilan etti. <\/li>\n\n\n\n
  5. 2022\u2019de<\/strong> di\u011fer fidye yaz\u0131l\u0131m akt\u00f6rleri<\/strong> de harekete ge\u00e7ti. Eyl\u00fcl ay\u0131na ait bir CISA uyar\u0131s\u0131, \u0130ran ba\u011flant\u0131l\u0131 tehdit akt\u00f6rlerinin di\u011fer hedeflerinin yan\u0131 s\u0131ra ABD\u2019deki bir yerel y\u00f6netime ve havac\u0131l\u0131k \u015firketine sald\u0131r\u0131 d\u00fczenledi\u011fini a\u00e7\u0131klad\u0131. Bu sald\u0131r\u0131da, devlet destekli kurulu\u015flar i\u00e7in pek de yayg\u0131n olmayan bir \u015fekilde fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131lar\u0131 i\u00e7in k\u00f6t\u00fc \u00fcne sahip Log4Shell kullan\u0131ld\u0131. Ayn\u0131 zamanda Kas\u0131m ay\u0131nda ABD\u2019deki bir devlet organizasyonuna y\u00f6nelik ger\u00e7ekle\u015fen sald\u0131r\u0131 i\u00e7in de \u0130ran su\u00e7land\u0131. \u0130smi a\u00e7\u0131klanmayan bir Federal Sivil Y\u00f6netim Organ\u0131 (FCEB) kurulu\u015fu veri ihlaline maruz kalm\u0131\u015f ve bu sald\u0131r\u0131da kripto para madencili\u011fine y\u00f6nelik bir k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m kullan\u0131lm\u0131\u015ft\u0131r.<\/li>\n\n\n\n
  6. Ronin Network, <\/strong>Vietnaml\u0131 blok zincir oyun geli\u015ftiricisi Sky Mavis taraf\u0131ndan Axie Infinity oyunu i\u00e7in Ethereum yan zinciri olarak olu\u015fturuldu. Mart ay\u0131nda bilgisayar korsanlar\u0131n\u0131n, ele ge\u00e7irilmi\u015f \u00f6zel \u015fifreleri kullanarak iki ayr\u0131 i\u015flemle Ronin Bridge\u2019den 173.600 Ethereum (592 milyon ABD dolar\u0131) ve 25,5 milyon ABD dolar\u0131 tutar\u0131nda para \u00e7ekti\u011fi ortaya \u00e7\u0131kt\u0131. Mart ay\u0131 fiyatlar\u0131yla 618 milyon ABD dolar\u0131 tutar\u0131ndaki h\u0131rs\u0131zl\u0131k, bir kripto firmas\u0131ndan yap\u0131lan \u015fimdiye kadarki en b\u00fcy\u00fck h\u0131rs\u0131zl\u0131k oldu. K\u00f6t\u00fc \u00fcne sahip Kuzey Koreli grup Lazarus, sald\u0131r\u0131dan itibaren olay\u0131n arkas\u0131ndaki isim olarak g\u00f6steriliyor. Ortal\u0131klarda g\u00f6r\u00fcnmeyen ve izine ge\u00e7mi\u015fteki milyar dolar tutar\u0131ndaki h\u0131rs\u0131zl\u0131k olaylar\u0131nda da rastlanan grubun bu olaylar\u0131 n\u00fckleer ve f\u00fcze programlar\u0131n\u0131 fonlamak i\u00e7in kulland\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fcl\u00fcyor. <\/li>\n\n\n\n
  7. Lapsus$ <\/strong> 2022\u2019de bir \u015fantaj grubu olarak ad\u0131n\u0131 duyurdu ve kurumsal kurbanlar\u0131ndan zorla \u00f6deme alabilmek i\u00e7in y\u00fcksek profilli veri h\u0131rs\u0131zl\u0131klar\u0131n\u0131 kulland\u0131. S\u00f6z konusu kurumsal kurbanlar\u0131 aras\u0131nda Microsoft, Samsung, Nvidia, Ubisoft, Okta ve Vodafone var. Kulland\u0131klar\u0131 y\u00f6ntemler aras\u0131nda ise firmalardaki veya y\u00fcklenicilerdeki ki\u015filere r\u00fc\u015fvet vermek yer al\u0131r. Grup bir s\u00fcre boyunca nispeten sessizli\u011fini korumu\u015f olsa da Grand Theft Auto\u2019nun geli\u015ftiricisi Rockstar Games\u2019e sald\u0131rarak y\u0131l\u0131n sonunda tekrar ortaya \u00e7\u0131kt\u0131. \u0130ddiaya g\u00f6re grubun birka\u00e7 \u00fcyesi Birle\u015fik Krall\u0131k ve Brezilya\u2019da tutukland\u0131.<\/li>\n\n\n\n
  8. Uluslararas\u0131 K\u0131z\u0131lha\u00e7 Komitesi (ICRC):<\/strong> Ocak ay\u0131nda ICRC, 515.000\u2019den fazla \u201csavunmas\u0131z\u201d kurban\u0131n ki\u015fisel bilgilerini tehlikeye atan b\u00fcy\u00fck bir veri ihlalini bildirdi. \u0130svi\u00e7reli bir y\u00fckleniciden \u00e7al\u0131nan veriler aras\u0131nda \u00e7at\u0131\u015fma, g\u00f6\u00e7 ve do\u011fal afet gibi nedenlerle ailelerinden ayr\u0131lan ki\u015filerin, kay\u0131p ki\u015filer ile bunlar\u0131n ailelerinin ve g\u00f6zalt\u0131ndaki ki\u015filerin bilgileri yer al\u0131yor. Daha sonras\u0131nda olay\u0131n faili olarak ismi a\u00e7\u0131klanmayan bir devlet g\u00f6sterilmi\u015f ve olay\u0131n yama uygulanmam\u0131\u015f bir sistem kullanarak ger\u00e7ekle\u015fti\u011fi belirtilmi\u015ftir.<\/li>\n\n\n\n
  9. Uber<\/strong>: Payla\u015f\u0131ml\u0131 yolculuk uygulamas\u0131 devi, 2016\u2019da 57 milyon kullan\u0131c\u0131n\u0131n bilgilerinin \u00e7al\u0131nmas\u0131yla b\u00fcy\u00fck veri ihlalleri aras\u0131nda ad\u0131n\u0131 duyurdu. Eyl\u00fcl ay\u0131nda Uber, muhtemelen Lapsus$ grubu \u00fcyesi bir bilgisayar korsan\u0131n\u0131n e-posta ve bulut sistemlerini, kod havuzlar\u0131n\u0131, kurum i\u00e7i Slack hesab\u0131n\u0131 ve HackerOne biletlerini ihlal etti\u011fini bildirdi. S\u00f6z konusu tehdit akt\u00f6r\u00fc, Uber\u2019in bir d\u0131\u015f y\u00fcklenicisini hedef alm\u0131\u015f ve bunu da b\u00fcy\u00fck ihtimalle karanl\u0131k a\u011fdan bu kurumun kurumsal \u015fifresini ele ge\u00e7irerek yapm\u0131\u015ft\u0131r.<\/li>\n\n\n\n
  10. Medibank:\u00a0<\/strong>Fidye yaz\u0131l\u0131m\u0131 akt\u00f6rleri, Avusturyal\u0131 sa\u011fl\u0131k sigortas\u0131 devinin d\u00f6rt milyon m\u00fc\u015fterisinin t\u00fcm ki\u015fisel verilerini firmaya 35 milyon ABD dolar\u0131na mal olan bir sald\u0131r\u0131 ile ele ge\u00e7irdi. Sorumlular\u0131n, ilk eri\u015fimden sorumlu, tehlikeye at\u0131lm\u0131\u015f ayr\u0131cal\u0131kl\u0131 kimlik bilgileriyle k\u00f6t\u00fc \u015f\u00f6hretli bir hizmet olarak fidye yaz\u0131l\u0131m\u0131 (RaaS) grubu REvil (nam\u0131 di\u011fer Sodinokibi) ile ba\u011flant\u0131l\u0131 oldu\u011funa inan\u0131l\u0131yor. Sald\u0131r\u0131dan etkilenenler, devam\u0131nda kimlik h\u0131rs\u0131zl\u0131klar\u0131yla ciddi oranda kar\u015f\u0131la\u015fabilir.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"

    Dijital g\u00fcvenlikte d\u00fcnya lideri olan ESET, son 12 ayda bir\u00e7ok hedef noktay\u0131 etkileyen, en k\u00f6t\u00fc bilgisayar korsanl\u0131\u011f\u0131 ve veri ihlali olaylar\u0131n\u0131n neler oldu\u011funu inceledi. Veriler 2022 y\u0131l\u0131nda y\u0131k\u0131c\u0131 siber sald\u0131r\u0131larda azalma olmad\u0131\u011f\u0131n\u0131 g\u00f6steriyor. \u00a0 2022 y\u0131l\u0131nda k\u00fcresel ekonomi, bir krizden di\u011ferine s\u00fcr\u00fcklenerek alt\u00fcst oldu. COVID-19 bir\u00e7ok b\u00f6lgede azalmaya ba\u015flad\u0131\u011f\u0131nda, bunun yerini artan enerji faturalar\u0131, y\u00fckselen […]<\/p>\n","protected":false},"author":1,"featured_media":3618,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[500,586,648,896,2121,2273,2645],"class_list":["post-3617","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji","tag-caddywiper","tag-conti-saldirisi","tag-dijital-guvenlik","tag-eset","tag-sandworm","tag-siber-saldirisi","tag-viasat"],"_links":{"self":[{"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/posts\/3617","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/comments?post=3617"}],"version-history":[{"count":1,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/posts\/3617\/revisions"}],"predecessor-version":[{"id":3619,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/posts\/3617\/revisions\/3619"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/media\/3618"}],"wp:attachment":[{"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/media?parent=3617"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/categories?post=3617"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/haber.kocaalibilisim.com\/index.php\/wp-json\/wp\/v2\/tags?post=3617"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}