{"id":10535,"date":"2022-02-23T15:50:39","date_gmt":"2022-02-23T12:50:39","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=10535"},"modified":"2022-02-23T15:50:39","modified_gmt":"2022-02-23T12:50:39","slug":"reset-notification-scam","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/reset-notification-scam\/10535\/","title":{"rendered":"Parola s\u0131f\u0131rlama bildirimi doland\u0131r\u0131c\u0131l\u0131\u011f\u0131"},"content":{"rendered":"<p>\u00c7o\u011fu online servis, hesab\u0131n\u0131zda \u201czararl\u0131, ola\u011fand\u0131\u015f\u0131\u201d bir etkinlik alg\u0131lad\u0131\u011f\u0131nda sizi uyaran yerle\u015fik bir g\u00fcvenlik sistemine sahiptir. \u00d6rne\u011fin bu servisler, hesaba ba\u011fl\u0131 telefon numaras\u0131 ve e-posta adresi de\u011fi\u015fiklikleri veya parola s\u0131f\u0131rlanma giri\u015fimleri hakk\u0131nda bildirimler g\u00f6nderir. Do\u011fal olarak bu t\u00fcr mesajlar yayg\u0131nla\u015ft\u0131k\u00e7a giri\u015fimci siber su\u00e7lular da kurumsal kullan\u0131c\u0131lara sald\u0131rmak i\u00e7in bu mekanizmay\u0131 taklit etmeye \u00e7al\u0131\u015f\u0131yorlar.<\/p>\n<h2>Sahte bir bildirim \u00f6rne\u011fi<\/h2>\n<div id=\"attachment_10537\" style=\"width: 1034px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-10537\" class=\"wp-image-10537 size-large\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2022\/02\/23154346\/reset-notification-scam-letter-1024x203.jpg\" alt=\"\" width=\"1024\" height=\"203\"><p id=\"caption-attachment-10537\" class=\"wp-caption-text\">Telefon numaras\u0131 de\u011fi\u015fikli\u011fiyle ilgili ger\u00e7ek bir sahte bildirim \u00f6rne\u011fi<\/p><\/div>\n<p>\u00a0<\/p>\n<p>Dilin yanl\u0131\u015f kullan\u0131m\u0131ndan, g\u00f6nderilen bildirimin hem hesaba yeni bir telefon numaras\u0131 eklemek hem de bir \u015fifre s\u0131f\u0131rlama kodu g\u00f6ndermekle ilgili olmas\u0131 sebebiyle mant\u0131ks\u0131zl\u0131\u011f\u0131na kadar bu mesajla ilgili her \u015fey g\u00fcl\u00fcn\u00e7 g\u00f6r\u00fcn\u00fcyor. E-posta adresinde \u201cdestek\u201d yazmas\u0131 da iletiye g\u00fcvenilirlik kazand\u0131rmaz: Bir destek posta kutusunun yabanc\u0131 bir alan ad\u0131na sahip olmas\u0131 (\u00c7ince bir alan ad\u0131 olmas\u0131 bir yana) i\u00e7in mant\u0131kl\u0131 bir sebep yoktur.<\/p>\n<p>Sald\u0131rganlar, kurban\u0131n hesap g\u00fcvenli\u011finden endi\u015fe ederek k\u0131rm\u0131z\u0131 KOD G\u00d6NDERME butonuna t\u0131klayaca\u011f\u0131n\u0131 umarlar. Bunu yapt\u0131ktan sonra kurban\u0131, hesap oturum a\u00e7ma sayfas\u0131n\u0131 taklit eden bir internet sitesine y\u00f6nlendirilirler; bu site tahmin edece\u011finiz \u00fczere asl\u0131nda sadece kurban\u0131n parolas\u0131n\u0131 \u00e7almak i\u00e7indir. Ele ge\u00e7irilen e-posta hesab\u0131 daha sonra BEC tipi sald\u0131r\u0131lar i\u00e7in veya sosyal m\u00fchendislik kullan\u0131larak daha sonraki sald\u0131r\u0131larda bir bilgi kayna\u011f\u0131 olarak kullan\u0131labilir.<\/p>\n<h2>\u015eirket \u00e7al\u0131\u015fanlar\u0131na anlat\u0131lmas\u0131 gerekenler<\/h2>\n<p>Siber su\u00e7lular\u0131n \u00e7al\u0131\u015fanlar\u0131n kimlik bilgilerini ele ge\u00e7irme \u015fanslar\u0131n\u0131 en aza indirmek i\u00e7in onlara a\u015fa\u011f\u0131daki konularda bilgi verin:<\/p>\n<ul>\n<li>Ger\u00e7ek g\u00f6r\u00fcnse de g\u00f6r\u00fcnmese de, otomatik g\u00fcvenlik bildirimlerindeki ba\u011flant\u0131lara asla t\u0131klamay\u0131n.<\/li>\n<li>Bir bildirim ald\u0131\u011f\u0131n\u0131zda, g\u00fcvenlik ayarlar\u0131n\u0131 ve bu ayarlarla ilgili ayr\u0131nt\u0131lar\u0131 kontrol edin, ancak bunu internet sitesini taray\u0131c\u0131da manuel olarak a\u00e7arak yap\u0131n.<\/li>\n<li>\u00d6rnekte oldu\u011fu gibi acemice yaz\u0131lm\u0131\u015f bir bildirim ald\u0131\u011f\u0131n\u0131zda en iyi ihtimalle g\u00f6rmezden gelip silin.<\/li>\n<li>Bildirim ger\u00e7ek g\u00f6r\u00fcn\u00fcyorsa, bilgi g\u00fcvenli\u011fi servisine veya g\u00fcvenlikten sorumlu yetkiliye haber verin; s\u00f6z konusu bildirim hedefli bir sald\u0131r\u0131n\u0131n i\u015fareti olabilir.<\/li>\n<\/ul>\n<h2>\u015eirket \u00e7al\u0131\u015fanlar\u0131 kimlik av\u0131 sald\u0131r\u0131lar\u0131ndan nas\u0131l korunur?<\/h2>\n<p>Genel anlamda, kimlik av\u0131 e-postalar\u0131n\u0131 \u00e7al\u0131\u015fanlar\u0131n gelen kutular\u0131ndan tamamen uzak tutmak en iyisidir. \u0130deali, bunlar\u0131n ve bunlara ek, spam mesajlar k\u00f6t\u00fc niyetli ekleri olan iletiler ve BEC ile ilgili e-postalar da dahil olmak \u00fczere t\u00fcm di\u011fer istenmeyen yaz\u0131\u015fmalar\u0131n posta a\u011f ge\u00e7idi d\u00fczeyinde ele ge\u00e7irilmesidir. Bu tehditlerle m\u00fccadele etmek i\u00e7in yak\u0131n zamanda Kaspersky Secure Mail Gateway \u00e7\u00f6z\u00fcm\u00fcm\u00fcz\u00fc g\u00fcncelledik.<\/p>\n<p>Kaspersky Security for Mail Gateway, BEC dahil \u00e7ok \u00e7e\u015fitli sald\u0131r\u0131 senaryolar\u0131na kar\u015f\u0131 koyabilir. \u00c7\u00f6z\u00fcm, posta kutular\u0131ndaki mesajlar\u0131 yeniden taramak i\u00e7in (gecikmeli kimlik av\u0131n\u0131 tespit etmek i\u00e7in) uygulamalar i\u00e7erir ve hedefli sald\u0131r\u0131lara kar\u015f\u0131 koymak i\u00e7in SIEM sistemleri ve ara\u00e7lar\u0131yla kolayca b\u00fct\u00fcnle\u015fir. \u00c7\u00f6z\u00fcmle ilgili <a href=\"https:\/\/www.kaspersky.com.tr\/small-to-medium-business-security\/mail-server?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2b_kasperskydaily_wpplaceholder_______\" target=\"_blank\" rel=\"noopener\">Kaspersky Secure Mail Gateway<\/a> sayfas\u0131ndan daha fazla bilgi edinebilirsiniz.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kimlik av\u0131na kar\u015f\u0131 koruma dersleri: Hesap g\u00fcvenli\u011fiyle ilgili sahte bildirimler hakk\u0131nda \u015firket \u00e7al\u0131\u015fanlar\u0131n\u0131n bilmesi gerekenler<\/p>\n","protected":false},"author":2598,"featured_media":10536,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1726,1194],"tags":[2019,1921,1074],"class_list":{"0":"post-10535","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-enterprise","8":"category-business","9":"tag-bec","10":"tag-e-posta","11":"tag-kimlik-avi"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/reset-notification-scam\/10535\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/reset-notification-scam\/23939\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/reset-notification-scam\/19423\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/reset-notification-scam\/9763\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/reset-notification-scam\/26187\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/reset-notification-scam\/24152\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/reset-notification-scam\/23952\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/reset-notification-scam\/26945\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/reset-notification-scam\/26487\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/reset-notification-scam\/32427\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/reset-notification-scam\/43728\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/reset-notification-scam\/18584\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/reset-notification-scam\/19037\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/reset-notification-scam\/15820\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/reset-notification-scam\/28216\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/reset-notification-scam\/28135\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/reset-notification-scam\/24846\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/reset-notification-scam\/30282\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/reset-notification-scam\/30058\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/kimlik-avi\/","name":"kimlik av\u0131"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10535","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2598"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=10535"}],"version-history":[{"count":1,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10535\/revisions"}],"predecessor-version":[{"id":10538,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10535\/revisions\/10538"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/10536"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=10535"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=10535"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=10535"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}