{"id":2302,"date":"2018-09-25T12:40:04","date_gmt":"2018-09-25T09:40:04","guid":{"rendered":"http:\/\/www.operasyonmerkezi.org\/?p=2302"},"modified":"2018-09-25T12:42:32","modified_gmt":"2018-09-25T09:42:32","slug":"kaspersky-lab-usb-ile-bulasan-her-10-zararli-yazilimdan-biri-kripto-para-madencisi","status":"publish","type":"post","link":"https:\/\/www.operasyonmerkezi.org\/haber\/kaspersky-lab-usb-ile-bulasan-her-10-zararli-yazilimdan-biri-kripto-para-madencisi","title":{"rendered":"Kaspersky Lab: USB ile Bula\u015fan Her 10 Zararl\u0131 Yaz\u0131l\u0131mdan Biri Kripto Para Madencisi"},"content":{"rendered":"

Kaspersky Lab taraf\u0131ndan 2018 y\u0131l\u0131ndaki USB ve \u00e7\u0131kar\u0131labilir medya cihaz\u0131 tehditlerine y\u00f6nelik yap\u0131lan incelemeye g\u00f6re, sald\u0131r\u0131lar\u0131n kapsam\u0131 ve miktar\u0131 az olsa da kurban say\u0131s\u0131 her y\u0131l art\u0131yor. Zararl\u0131 yaz\u0131l\u0131mlar\u0131, birbirleriyle ba\u011flant\u0131s\u0131 olmayan bilgisayarlar aras\u0131nda yaymalar\u0131yla bilinen USB cihazlar\u0131, siber sald\u0131rganlar taraf\u0131ndan kripto madencilik yaz\u0131l\u0131mlar\u0131n\u0131 etkin ve kal\u0131c\u0131 bir \u015fekilde yaymak i\u00e7in kullan\u0131l\u0131yor.<\/p>\n

Yakla\u015f\u0131k 20 y\u0131ld\u0131r kullan\u0131lmalar\u0131na ve g\u00fcvenlik konusunda k\u00f6t\u00fc bir \u015f\u00f6hrete sahip olmalar\u0131na ra\u011fmen USB cihazlar\u0131, pop\u00fcler i\u015f gere\u00e7leri ve fuar hediyeleri olmaya devam ediyor. USB cihazlar\u0131 bu sayede siber su\u00e7lular\u0131n hedefinde olmaya devam ediyor ve son birka\u00e7 y\u0131lda dikkate de\u011fer \u00f6l\u00e7\u00fcde istikrarl\u0131 olmay\u0131 ba\u015faran baz\u0131 tehditleri yaymak i\u00e7in kullan\u0131l\u0131yor. \u00c7\u0131kar\u0131labilir medya cihazlar\u0131n\u0131 hedef alan tehditler aras\u0131ndan Kaspersky Security Network (KSN) taraf\u0131ndan tespit edilen ilk 10 tehditte birinci s\u0131ra 2015\u2019ten beri Windows LNK adl\u0131 zararl\u0131 yaz\u0131l\u0131m\u0131n elinde. Tehditler aras\u0131nda, 2010 y\u0131l\u0131ndan kalan eski \u2018Stuxnet a\u00e7\u0131\u011f\u0131\u2019, CVE-2010-2568 ve giderek artan say\u0131da kripto madenci yer al\u0131yor.<\/p>\n

KSN veri sonu\u00e7lar\u0131<\/strong><\/h6>\n

S\u00fcr\u00fcc\u00fc k\u00f6k dizinlerinde en s\u0131k tespit edilen kripto madencilerden biri, 2014\u2019ten beri bilinen rojan.Win32.Miner.ays\/ Trojan.Win64.Miner.all. Bu Truva at\u0131, madencilik uygulamas\u0131n\u0131 bilgisayara at\u0131p kuruyor ve ard\u0131ndan yaz\u0131l\u0131m\u0131 gizlice \u00e7al\u0131\u015ft\u0131r\u0131p, sald\u0131rgan\u0131n kontrol\u00fc alt\u0131ndaki harici bir sunucuya sonu\u00e7lar\u0131 g\u00f6ndermek i\u00e7in gerekli dosyalar\u0131 indiriyor. Kaspersky Lab\u2019\u0131n elde etti\u011fi veriler, 2018\u2019de tespit edilen baz\u0131 sald\u0131r\u0131lar\u0131n y\u0131llar \u00f6ncesine dayand\u0131\u011f\u0131n\u0131 g\u00f6steriyor. Bu da, uzun s\u00fcre sistemde kalan bu yaz\u0131l\u0131mlar\u0131n hedef cihaz\u0131n i\u015flem g\u00fcc\u00fcne \u00f6nemli \u00f6l\u00e7\u00fcde olumsuz etki etmi\u015f olabilece\u011fini g\u00f6steriyor.<\/p>\n

Madencinin 64-bit s\u00fcr\u00fcm\u00fc yakla\u015f\u0131k alt\u0131 y\u0131ld\u0131r s\u00fcrekli artan say\u0131larda tespit ediliyor. 2016\u2019dan 2017\u2019ye %18,42 artan say\u0131n\u0131n 2017-2018 aras\u0131nda %16,42 oran\u0131nda art\u0131\u015f g\u00f6stermesi bekleniyor.Bu sonu\u00e7lar, \u00e7\u0131kar\u0131labilir medya cihazlar\u0131 ile yay\u0131lma y\u00f6nteminin bu tehdit i\u00e7in \u00e7ok iyi i\u015fledi\u011fini g\u00f6steriyor.<\/p>\n

USB cihazlar\u0131n\u0131n i\u015f i\u00e7in daha yayg\u0131n kullan\u0131ld\u0131\u011f\u0131 geli\u015fmekte olan pazarlar, \u00e7\u0131kar\u0131labilir medya cihazlar\u0131 ile yay\u0131lan zararl\u0131 yaz\u0131l\u0131mlara en a\u00e7\u0131k olan yerler. Bu durumdan en \u00e7ok etkilenen b\u00f6lgelerin ba\u015f\u0131nda Asya, Afrika ve G\u00fcney Amerika bulunuyor. Ancak, Avrupa ve Kuzey Amerika\u2019da da baz\u0131 izole sald\u0131r\u0131lar tespit edildi.<\/p>\n

USB cihazlar\u0131 2018\u2019de ay\u0131rca, 21 A\u011fustos 2018\u2019de raporlanan ve en az 2013\u2019ten beri Meksika\u2019da t\u00fcketicileri ve kurumlar\u0131 etkileyen, bankac\u0131l\u0131k hedefli Dark Tequila adl\u0131 geli\u015fmi\u015f zararl\u0131 yaz\u0131l\u0131m\u0131 yaymak i\u00e7in de kullan\u0131ld\u0131. Ayr\u0131ca, KSN verilerine g\u00f6re 2018\u2019in ilk yar\u0131s\u0131nda end\u00fcstriyel kontrol sistemlerini hedef alan sald\u0131r\u0131lar\u0131n %8\u2019i \u00e7\u0131kar\u0131labilir medya cihazlar\u0131 \u00fczerinden ger\u00e7ekle\u015ftirildi.<\/p>\n

Kaspersky Lab Zararl\u0131 Yaz\u0131l\u0131mla M\u00fccadele Ara\u015ft\u0131rmac\u0131s\u0131 Denis Parinov;<\/strong><\/h6>\n

Bar\u0131nd\u0131rd\u0131klar\u0131 g\u00fcvenlik zay\u0131fl\u0131klar\u0131n\u0131n daha fazla fark\u0131nda olunmas\u0131 ve bir i\u015f arac\u0131 olarak daha az kullan\u0131lmalar\u0131 nedeniyle USB cihazlar\u0131, zararl\u0131 yaz\u0131l\u0131m yaymak i\u00e7in eskisine g\u00f6re daha az etkili olabiliyor. Ancak, yapt\u0131\u011f\u0131m\u0131z ara\u015ft\u0131rma bunlar\u0131n halen g\u00f6z ard\u0131 edilmemesi gereken \u00f6nemli riskler ta\u015f\u0131d\u0131\u011f\u0131n\u0131 g\u00f6steriyor. Bu cihazlar sald\u0131rganlar\u0131n i\u015fine yar\u0131yor \u00e7\u00fcnk\u00fc a\u00e7\u0131klar\u0131ndan faydalanmaya devam ediyorlar ve baz\u0131 sald\u0131r\u0131lar y\u0131llar boyu tespit edilmiyor. Neyse ki kullan\u0131c\u0131lar\u0131n ve i\u015fletmelerin kendilerini korumalar\u0131 i\u00e7in atabilecekleri baz\u0131 \u00e7ok basit ad\u0131mlar var<\/p>\n

USB cihazlar\u0131 bir\u00e7ok avantaj sunuyor. K\u00fc\u00e7\u00fck ve kullan\u0131\u015fl\u0131 olmalar\u0131n\u0131n yan\u0131 s\u0131ra marka i\u00e7in harika birer malzeme olabiliyorlar. Ancak cihazlar\u0131n kendisi, i\u00e7lerinde saklanan veri ve ba\u011fland\u0131klar\u0131 bilgisayarlar\u0131n t\u00fcm\u00fc korunmad\u0131\u011f\u0131 takdirde siber tehditlere de davetiye \u00e7\u0131kar\u0131yorlar.<\/p>\n

Kaspersky Lab’\u0131n tavsiyeleri<\/strong><\/h6>\n