{"id":10556,"date":"2022-03-18T12:25:22","date_gmt":"2022-03-18T09:25:22","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=10556"},"modified":"2022-03-18T12:25:22","modified_gmt":"2022-03-18T09:25:22","slug":"collateral-damage-on-cybersecurity","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/collateral-damage-on-cybersecurity\/10556\/","title":{"rendered":"Siber G\u00fcvenlikte \u0130kincil Zarar"},"content":{"rendered":"<p>Son \u00fc\u00e7 haftada, Ukrayna\u2019daki sava\u015f, d\u00fcnyam\u0131z\u0131 parampar\u00e7a etti. Ukrayna, Rusya, Avrupa ve t\u00fcm d\u00fcnyada aileler, ili\u015fkiler, ortakl\u0131klar ve ba\u011flar \u00f6nemli \u00f6l\u00e7\u00fcde etkilendi. Bu trajik olaylar hepimizin hayat\u0131n\u0131 etkiliyor.<\/p>\n<p>Ad\u0131m\u0131 gururla ta\u015f\u0131yan d\u00fcnyan\u0131n en b\u00fcy\u00fck \u00f6zel siber g\u00fcvenlik \u015firketi olan \u015firketim de bu olaylardan etkilendi. Bu hafta Alman Federal Bilgi G\u00fcvenli\u011fi Ofisi (BSI), Kaspersky \u00fcr\u00fcnleri ve \u00e7\u00f6z\u00fcmlerini kullananlar\u0131n BT g\u00fcvenli\u011fine y\u00f6nelik potansiyel riskleri \u00f6ne s\u00fcrerek Kaspersky \u00fcr\u00fcnleri hakk\u0131nda bir uyar\u0131 yay\u0131nlad\u0131. Ayr\u0131nt\u0131lara girmeden, bu iddialar\u0131n hi\u00e7bir kan\u0131tla desteklenmeyen ve teknik detay belirtmeyen spek\u00fclasyonlar oldu\u011funu s\u00f6yleyebilirim. Nedeni basit. \u015eirketin yirmi be\u015f y\u0131ll\u0131k tarihinde Kaspersky\u2019nin k\u00f6t\u00fc ama\u00e7larla kullan\u0131ld\u0131\u011f\u0131na veya k\u00f6t\u00fcye kullan\u0131ld\u0131\u011f\u0131na dair say\u0131s\u0131z giri\u015fime ra\u011fmen hi\u00e7bir kan\u0131t bulunmad\u0131 ve b\u00f6yle bir durum ispatlanmad\u0131.<\/p>\n<p>B\u00f6yle bir kan\u0131t olmadan, BSI\u2019nin yaln\u0131zca siyasi gerek\u00e7elerle karar verdi\u011fi sonucuna varabilirim. Objektifli\u011fi, \u015feffafl\u0131\u011f\u0131 ve teknik yetkinli\u011fi savunan i\u015fletmenin \u2014 Kaspersky\u2019nin BSI ve di\u011fer Avrupal\u0131 d\u00fczenleyiciler ve end\u00fcstri kurulu\u015flar\u0131yla birlikte y\u0131llard\u0131r destekledi\u011fi de\u011ferlerin ayn\u0131s\u0131 \u2014 ilkelerinden tam anlam\u0131yla bir gecede vazge\u00e7meye karar vermesi veya buna mecbur b\u0131rak\u0131lmas\u0131 \u00fcz\u00fcc\u00fc. BSI ve Alman siber g\u00fcvenlik end\u00fcstrisinin uzun s\u00fcredir orta\u011f\u0131 ve kat\u0131l\u0131mc\u0131s\u0131 olan Kaspersky\u2019ye bu d\u00fczmece ve as\u0131ls\u0131z iddialar\u0131 de\u011ferlendirmesi i\u00e7in yaln\u0131zca saatler verildi. Bu bir diyalog daveti de\u011fil, bir hakarettir.<\/p>\n<p>Kaspersky\u2019nin Avrupa\u2019daki Kaspersky \u015eeffafl\u0131k Merkezlerinde kaynak kodumuzun, g\u00fcncellemelerimizin, mimari yap\u0131m\u0131z\u0131n ve s\u00fcre\u00e7lerimizin kapsaml\u0131 bir denetimini ger\u00e7ekle\u015ftirmesi i\u00e7in yapt\u0131\u011f\u0131 s\u00fcrekli \u00e7a\u011fr\u0131lara ra\u011fmen, BSI bu konuda hi\u00e7bir ad\u0131m atmad\u0131. Bu karar ayn\u0131 zamanda, K\u00fcresel \u015eeffafl\u0131k Giri\u015fimimizin bir par\u00e7as\u0131 olarak Avrupal\u0131 m\u00fc\u015fterilerimizin tehdit verilerinin \u0130svi\u00e7re\u2019ye ta\u015f\u0131nmas\u0131 i\u00e7in harcad\u0131\u011f\u0131m\u0131z milyonlarca euroluk \u00e7abay\u0131, Kaspersky olarak y\u0131llard\u0131r <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/transparency-status-updates-2\/7386\/\" target=\"_blank\" rel=\"noopener\">daha fazla \u015feffafl\u0131\u011fa<\/a> \u00f6nc\u00fcl\u00fck etti\u011fimiz ger\u00e7e\u011fini de rahatl\u0131kla g\u00f6z ard\u0131 ediyor. Bu nedenle BSI\u2019\u0131n karar\u0131n\u0131, \u015firketime ve \u00f6zellikle Almanya ve Avrupa\u2019daki Kaspersky \u00e7al\u0131\u015fanlar\u0131na y\u00f6nelik haks\u0131z ve hakkaniyetsiz bir sald\u0131r\u0131 olarak g\u00f6r\u00fcyorum. Daha da \u00f6nemlisi, bu ayn\u0131 zamanda iki hafta \u00f6nce AV-Test taraf\u0131ndan en iyi g\u00fcvenlik teklifiyle \u00f6d\u00fcllendirilen Kaspersky\u2019ye g\u00fcvenen Almanya\u2019daki geni\u015f t\u00fcketici kitlesine y\u00f6nelik de bir sald\u0131r\u0131d\u0131r. Ayn\u0131 zamanda binlerce Alman BT g\u00fcvenlik uzman\u0131n\u0131n i\u015flerine, son teknoloji siber su\u00e7larla m\u00fccadele i\u00e7in yeti\u015ftirdi\u011fimiz kanun uygulay\u0131c\u0131lar, i\u015f i\u00e7in yeterli becerileri edinmelerini sa\u011flad\u0131\u011f\u0131m\u0131z Alman bilgisayar bilimi \u00f6\u011frencilerine ve siber g\u00fcvenli\u011fin en kritik alanlar\u0131ndaki ara\u015ft\u0131rma projelerinde \u00e7e\u015fitli siber sald\u0131r\u0131lardan korudu\u011fumuz farkl\u0131 b\u00fcy\u00fckl\u00fckteki on binlerce Alman ve Avrupa i\u015fletmesindeki ortaklar\u0131m\u0131za y\u00f6nelik bir sald\u0131r\u0131d\u0131r.<\/p>\n<p>BSI\u2019\u0131n verdi\u011fi karar\u0131n itibar ve ticari a\u00e7\u0131dan zarar\u0131 \u015fimdiden olduk\u00e7a belirgin. Tek bir sorum var \u2014 hangi ama\u00e7la? Kaspersky\u2019nin Almanya\u2019da olmamas\u0131, Almanya\u2019y\u0131 veya Avrupa\u2019y\u0131 daha g\u00fcvenli yapmaz. Tam tersine. BSI karar\u0131, Alman kullan\u0131c\u0131lara, ba\u011f\u0131ms\u0131z bir Alman BT-G\u00fcvenlik Enstit\u00fcs\u00fc olan AV-Test\u2019e g\u00f6re fidye yaz\u0131l\u0131mlar\u0131na kar\u015f\u0131 %100 korumay\u0131 garanti eden tek antivir\u00fcs\u00fc derhal kald\u0131rmalar\u0131n\u0131n \u015fiddetle tavsiye edildi\u011fi anlam\u0131na geliyor. \u00d6nde gelen Alman end\u00fcstriyel ekipman \u00fcreticilerinin, yaz\u0131l\u0131mlar\u0131ndaki ve donan\u0131mlar\u0131ndaki kritik g\u00fcvenlik a\u00e7\u0131klar\u0131 hakk\u0131nda, ayn\u0131 \u00fcreticilerin sorumlu a\u00e7\u0131klama \u00e7al\u0131\u015fmalar\u0131ndan dolay\u0131 takdir edilen bir i\u015fletme olan Kaspersky ICS-CERT\u2019den art\u0131k bilgi almayacaklar\u0131 anlam\u0131na geliyor. Alman otomotiv devlerinin, bir sald\u0131rgan\u0131n t\u00fcm yerle\u015fik bilgisayar sistemini ele ge\u00e7irmesine ve i\u015fleyi\u015fini de\u011fi\u015ftirmesine ortam olu\u015fturacak hatalardan haberi olmayaca\u011f\u0131 anlam\u0131na geliyor. Art\u0131k d\u00fcnyan\u0131n her yerinden ve \u00f6zellikle Rusya\u2019dan tehdit verilerini alamayacak olan Avrupal\u0131 olay m\u00fcdahale ekipleri ve SOC operat\u00f6rleri i\u00e7in sald\u0131r\u0131 y\u00fczeyinde b\u00fcy\u00fck bir k\u00f6r nokta anlam\u0131na geliyor.<\/p>\n<p>Art\u0131k Alman ekibimizle ileti\u015fime ge\u00e7mekten ka\u00e7\u0131n\u0131yor gibi g\u00f6r\u00fcnen BSI\u2019a mesaj\u0131m basit: Bu karar\u0131n haks\u0131z ve tamamen yanl\u0131\u015f oldu\u011funu d\u00fc\u015f\u00fcn\u00fcyoruz. Bununla birlikte, ortaya \u00e7\u0131kabilecek endi\u015felerinizi objektif, teknik ve d\u00fcr\u00fcst bir \u015fekilde ele almaya devam ediyoruz. Ek teknik analiz ve g\u00fcvenlik \u00e7\u00f6z\u00fcmlerinin ve BT tedarik zincirinin incelenmesi i\u00e7in \u00e7a\u011fr\u0131da bulunarak daha dengeli bir yakla\u015f\u0131m benimseyen Avrupal\u0131 d\u00fczenleyicilere ve end\u00fcstri uzmanlar\u0131na minnettar\u0131z. Bu s\u00fcre\u00e7 boyunca, Kaspersky\u2019nin sunabilece\u011fi t\u00fcm bilgileri ve i\u015fbirli\u011fini sa\u011flamaya tamamen kararl\u0131y\u0131m. Alman ve Avrupal\u0131 m\u00fc\u015fterilerimize \u2014 Kaspersky\u2019yi tercih etti\u011finiz i\u00e7in \u00e7ok minnettar\u0131z ve elimizden gelenin en iyisini yapmaya devam edece\u011fiz: Teknolojimiz ve operasyonlar\u0131m\u0131z konusunda tamamen \u015feffaf olurken, sizi nereden geldi\u011fine bakmaks\u0131z\u0131n t\u00fcm siber tehditlerden koruyaca\u011f\u0131z.<\/p>\n<p>Ukrayna\u2019daki sava\u015f ancak diplomasi yoluyla sona erebilir ve hepimiz d\u00fc\u015fmanl\u0131klar\u0131n sona ermesini ve diyalo\u011fun devam etmesini umuyoruz. Bu sava\u015f, masum insanlara ac\u0131 \u00e7ektiren ve hiper ba\u011flant\u0131l\u0131 d\u00fcnyam\u0131zda yank\u0131lar\u0131n\u0131 \u015fimdiden g\u00f6rd\u00fc\u011f\u00fcm\u00fcz bir trajedidir. Bizi birbirimize ba\u011flayan dijital ba\u011flant\u0131lar\u0131 korumak amac\u0131yla g\u00fcven ve i\u015fbirli\u011fi temeline dayanarak in\u015fa edilen k\u00fcresel siber g\u00fcvenlik end\u00fcstrisi, ikincil zararlara neden olabilir. Bu durum da, daha az g\u00fcvenli bir ortam yarat\u0131r.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Eugene&#8217;nin Alman Federal Bilgi G\u00fcvenli\u011fi Dairesi (BSI) taraf\u0131ndan Kaspersky \u00fcr\u00fcnlerinin kullan\u0131m\u0131na kar\u015f\u0131 yapt\u0131\u011f\u0131 uyar\u0131ya cevaben yazd\u0131\u011f\u0131 a\u00e7\u0131k mektubu.<\/p>\n","protected":false},"author":13,"featured_media":10557,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1285],"tags":[1700,2540,1615,28,1407],"class_list":{"0":"post-10556","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-products","8":"tag-global-seffaflik-girisimi","9":"tag-global-transparency-initiative","10":"tag-gti","11":"tag-kaspersky","12":"tag-seffaflik"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/collateral-damage-on-cybersecurity\/10556\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/collateral-damage-on-cybersecurity\/23966\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/collateral-damage-on-cybersecurity\/19451\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/collateral-damage-on-cybersecurity\/9783\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/collateral-damage-on-cybersecurity\/26266\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/collateral-damage-on-cybersecurity\/24227\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/collateral-damage-on-cybersecurity\/26992\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/collateral-damage-on-cybersecurity\/26524\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/collateral-damage-on-cybersecurity\/43938\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/collateral-damage-on-cybersecurity\/18611\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/collateral-damage-on-cybersecurity\/19103\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/collateral-damage-on-cybersecurity\/15851\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/collateral-damage-on-cybersecurity\/28295\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/collateral-damage-on-cybersecurity\/30312\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/collateral-damage-on-cybersecurity\/30085\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/seffaflik\/","name":"\u015feffafl\u0131k"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10556","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=10556"}],"version-history":[{"count":4,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10556\/revisions"}],"predecessor-version":[{"id":10562,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/10556\/revisions\/10562"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/10557"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=10556"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=10556"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=10556"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}