{"id":10469,"date":"2022-01-25T14:31:37","date_gmt":"2022-01-25T11:31:37","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=10469"},"modified":"2022-05-05T14:25:09","modified_gmt":"2022-05-05T11:25:09","slug":"dark-souls-dangerous-vulnerability","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/dark-souls-dangerous-vulnerability\/10469\/","title":{"rendered":"Dark Souls III video oyununda tehlikeli g\u00fcvenlik a\u00e7\u0131\u011f\u0131"},"content":{"rendered":"

Oyun camias\u0131, Dark Souls III video oyununda yak\u0131n zamanda ortaya \u00e7\u0131kan bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 tart\u0131\u015f\u0131yor.<\/a> Bu RCE<\/a> g\u00fcvenlik a\u00e7\u0131\u011f\u0131, sald\u0131rganlar\u0131n kurban\u0131n bilgisayar\u0131nda uzaktan rastgele kod y\u00fcr\u00fctmesine olanak tan\u0131yor. G\u00f6r\u00fcn\u00fc\u015fe g\u00f6re, g\u00fcvenlik a\u00e7\u0131\u011f\u0131 Dark Soul serisindeki \u00f6nceki oyunlar\u0131 da etkiliyor. Bu nedenle geli\u015ftiriciler, Dark Souls Remastered, Dark Souls II ve Dark Souls III genelinde PvP sunucular\u0131n\u0131 ge\u00e7ici olarak devre d\u0131\u015f\u0131 b\u0131rakmak gibi al\u0131\u015f\u0131lmad\u0131k bir ad\u0131m att\u0131.<\/p>\n

Geli\u015ftiriciler, Dark Souls: Ready To Die i\u00e7in de sunucular\u0131 kapatmay\u0131 planlad\u0131klar\u0131n\u0131 belirtiyor<\/a>. Oyuncular ayn\u0131 g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n, yak\u0131nda yay\u0131nlanacak olan ve ayn\u0131 altyap\u0131y\u0131 kulland\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fclen Elden Ring oyununu da etkilemesinden korkuyor. Hata yaln\u0131zca PC kullan\u0131c\u0131lar\u0131n\u0131 ilgilendiriyor; Xbox ve PlayStation\u2019\u0131 etkilemiyor.<\/p>\n

Dark Souls g\u00fcvenlik a\u00e7\u0131\u011f\u0131 neden bu kadar tehlikeli?<\/h2>\n

Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131, kurban\u0131n bilgisayar\u0131ndaki hemen hemen her program\u0131n sald\u0131rgan taraf\u0131ndan y\u00fcr\u00fct\u00fclebilmesine olanak tan\u0131yor. Sald\u0131rgan bu sayede gizli verileri \u00e7alabiliyor veya istedi\u011fi herhangi bir program\u0131 \u00e7al\u0131\u015ft\u0131rabiliyor (k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m y\u00fcklemek dahil). The_Grim_Sleeper adl\u0131 oyuncu, Twitch ak\u0131\u015f\u0131nda<\/a> bu k\u00f6t\u00fcye kullan\u0131m\u0131n nas\u0131l i\u015fledi\u011fini g\u00f6stermi\u015f. Yay\u0131nda, bilinmeyen bir ki\u015fi taraf\u0131ndan yay\u0131nc\u0131n\u0131n bilgisayar\u0131nda oyunla ilgili kritik notlar\u0131 okumak i\u00e7in Windows Ekran Okuyucusu motorunu kullanan bir PowerShell beti\u011fi ba\u015flat\u0131ld\u0131\u011f\u0131n\u0131 g\u00f6rebilirsiniz.<\/p>\n\n

Dark Souls g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n k\u00f6t\u00fcye kullan\u0131lma olas\u0131l\u0131\u011f\u0131 nedir?<\/h2>\n

Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n ne \u015fekilde k\u00f6t\u00fcye kullan\u0131ld\u0131\u011f\u0131 \u015fu an i\u00e7in halka a\u00e7\u0131k de\u011fil. Sald\u0131r\u0131n\u0131n arkas\u0131ndaki ki\u015fi, ger\u00e7ek bir zarar vermekten ziyade, soruna etik a\u00e7\u0131dan \u015f\u00fcpheli bir y\u00f6ntemle dikkat \u00e7ekmeye \u00e7al\u0131\u015fm\u0131\u015f gibi g\u00f6r\u00fcn\u00fcyor. Dark Souls toplulu\u011fundaki tart\u0131\u015fmaya bak\u0131l\u0131rsa, istismar\u0131n yarat\u0131c\u0131s\u0131, oyun geli\u015ftiricileri bir s\u00fcredir bu ciddi g\u00fcvenlik a\u00e7\u0131\u011f\u0131 hakk\u0131nda bilgilendirmeye \u00e7al\u0131\u015f\u0131yormu\u015f, ancak mesajlar\u0131 g\u00f6rmezden gelinmi\u015f. Bu y\u00fczden pop\u00fcler bir yay\u0131nc\u0131y\u0131 canl\u0131 yay\u0131n s\u0131ras\u0131nda hacklemeye karar vermi\u015f.<\/p>\n

Ancak bu bilgi %100 g\u00fcvenilir de\u011fil, ger\u00e7ekte her \u015fey bu kadar basit olmayabilir. \u00d6rnek vermek gerekirse, istismar\u0131n yarat\u0131c\u0131s\u0131, hilelere kar\u015f\u0131 tasarlanm\u0131\u015f bir Dark Souls modu olan Blue Sentinel eklentisinin geli\u015ftiricileriyle g\u00fcvenlik a\u00e7\u0131\u011f\u0131 hakk\u0131nda zaten bilgi payla\u015fm\u0131\u015f.<\/a> Bu bilginin ba\u015fka kimlerin eline ge\u00e7ebilece\u011fi belli de\u011fil. Ayr\u0131ca, g\u00fcvenlik a\u00e7\u0131\u011f\u0131 g\u00f6sterildikten sonra ba\u015fka hackerlar da ayn\u0131 a\u00e7\u0131\u011f\u0131 k\u00f6t\u00fcye kullanmaya ve bunu oyunculara ger\u00e7ekten zarar vermek i\u00e7in kullanmaya \u00e7al\u0131\u015fabilir. Bu noktada \u00e7e\u015fitli olas\u0131 senaryolar devreye girebilir: Sald\u0131rganlar bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 oyun hesaplar\u0131n\u0131n veya kripto c\u00fczdanlar\u0131n\u0131n parolalar\u0131n\u0131 \u00e7almak i\u00e7in ya da fidye yaz\u0131l\u0131m\u0131 ve gizli madencilik yaz\u0131l\u0131m\u0131 gibi bir\u00e7ok k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131 y\u00fcklemek i\u00e7in kullanabilir.<\/p>\n

Dark Souls g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan nas\u0131l korunursunuz?<\/h2>\n

G\u00f6r\u00fcn\u00fc\u015fe g\u00f6re, FromSoftware \u015fu anda sorunu \u00e7\u00f6zmeye \u00e7al\u0131\u015f\u0131yor. Umar\u0131z bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 h\u0131zla d\u00fczeltebilirler. Ancak bu s\u0131rada, her cihaz i\u00e7in y\u00fcksek kaliteli g\u00fcvenlik \u00e7\u00f6z\u00fcmleri<\/a> kullanman\u0131z\u0131 \u00f6neririz. Antivir\u00fcslerimiz, g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n k\u00f6t\u00fcye kullan\u0131m\u0131 da dahil her t\u00fcrl\u00fc tehdide kar\u015f\u0131 koruma sa\u011flarken, \u00f6zel bir oyun modu sayesinde oyun performans\u0131n\u0131 etkilemeden minimum PC kayna\u011f\u0131 t\u00fcketir<\/a>.<\/p>\n\n","protected":false},"excerpt":{"rendered":"

Dark Souls III video oyununda, oyuncular\u0131n bilgisayarlar\u0131n\u0131n kontrol\u00fcn\u00fc ele ge\u00e7irmek i\u00e7in kullan\u0131labilecek tehlikeli bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 ke\u015ffedildi.<\/p>\n","protected":false},"author":2706,"featured_media":10470,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1351],"tags":[790,585,586,2159],"class_list":{"0":"post-10469","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-threats","8":"tag-guvenlik-aciklari","9":"tag-oyuncular","10":"tag-oyunlar","11":"tag-rce"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/dark-souls-dangerous-vulnerability\/10469\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/dark-souls-dangerous-vulnerability\/23849\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/dark-souls-dangerous-vulnerability\/19346\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/dark-souls-dangerous-vulnerability\/9704\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/dark-souls-dangerous-vulnerability\/26085\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/dark-souls-dangerous-vulnerability\/24054\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/dark-souls-dangerous-vulnerability\/23797\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/dark-souls-dangerous-vulnerability\/26755\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/dark-souls-dangerous-vulnerability\/26345\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/dark-souls-dangerous-vulnerability\/32237\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/dark-souls-dangerous-vulnerability\/43436\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/dark-souls-dangerous-vulnerability\/18459\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/dark-souls-dangerous-vulnerability\/18861\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/dark-souls-dangerous-vulnerability\/15724\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/dark-souls-dangerous-vulnerability\/28010\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/dark-souls-dangerous-vulnerability\/32343\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/dark-souls-dangerous-vulnerability\/28046\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/dark-souls-dangerous-vulnerability\/24793\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/dark-souls-dangerous-vulnerability\/30195\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/dark-souls-dangerous-vulnerability\/29984\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/oyuncular\/","name":"oyuncular"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10469","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2706"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=10469"}],"version-history":[{"count":1,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10469\/revisions"}],"predecessor-version":[{"id":10471,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10469\/revisions\/10471"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/10470"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=10469"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=10469"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=10469"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}