{"id":11808,"date":"2023-11-02T18:30:30","date_gmt":"2023-11-02T15:30:30","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=11808"},"modified":"2023-11-02T19:41:06","modified_gmt":"2023-11-02T16:41:06","slug":"qr-codes-in-phishing-emails","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/qr-codes-in-phishing-emails\/11808\/","title":{"rendered":"QR kodu i\u00e7eren bir e-posta m\u0131 ald\u0131n\u0131z? Dikkat!"},"content":{"rendered":"<p>Kullan\u0131c\u0131lar\u0131n b\u00fcy\u00fck internet \u015firketlerinden (\u00f6rne\u011fin Microsoft veya bulut hizmeti Office 365) QR kodlar\u0131 i\u00e7eren e-postalar ald\u0131\u011f\u0131na dair <a target=\"_blank\" href=\"https:\/\/securelist.com\/qr-codes-in-phishing\/110676\/\" rel=\"noopener\">vakalar giderek artmaktad\u0131r<\/a>. Bu e-postalar\u0131n g\u00f6vde metninde bir eylem \u00e7a\u011fr\u0131s\u0131 vard\u0131r: \u00f6zetle, hesab\u0131n\u0131za eri\u015fimi s\u00fcrd\u00fcrmek i\u00e7in QR kodunu taray\u0131n. Bu yaz\u0131da, bu t\u00fcr mesajlara tepki vermeye de\u011fip de\u011fmeyece\u011fini incelemektedir.<\/p>\n<h2>QR kodunu taray\u0131n ya da ka\u00e7\u0131n\u0131lmaz olanla y\u00fczle\u015fin<\/h2>\n<p>Bu t\u00fcrden tipik bir e-posta, hesap parolan\u0131z\u0131n s\u00fcresinin dolmak \u00fczere oldu\u011funu, bu s\u00fcrenin sonunda posta kutunuza eri\u015fiminizi kaybedece\u011finizi ve bu nedenle parolan\u0131n de\u011fi\u015ftirilmesi gerekti\u011fini, bunun i\u00e7in de e-postadaki QR kodunu taraman\u0131z ve talimatlar\u0131 izlemeniz gerekti\u011fini belirten bir bildirim i\u00e7erir.<\/p>\n<div id=\"attachment_11812\" style=\"width: 1510px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165710\/qr-codes-in-phishing-emails-01.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-11812\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165710\/qr-codes-in-phishing-emails-01.jpg\" alt=\"QR kodu taranarak parola s\u0131f\u0131rlanmal\u0131d\u0131r\" width=\"1500\" height=\"960\" class=\"size-full wp-image-11812\"><\/a><p id=\"caption-attachment-11812\" class=\"wp-caption-text\">QR kodu i\u00e7eren bir kimlik av\u0131 e-postas\u0131 \u00f6rne\u011fi<\/p><\/div>\n<p>Ba\u015fka bir e-postada, al\u0131c\u0131 \u201ckimlik do\u011frulay\u0131c\u0131 oturumunun bug\u00fcn sona erdi\u011fi\u201d konusunda uyar\u0131l\u0131yor olabilir. Bunu \u00f6nlemek i\u00e7in kullan\u0131c\u0131ya \u201cparola g\u00fcvenli\u011fini yeniden do\u011frulamak i\u00e7in QR Kodunu ak\u0131ll\u0131 telefonu ile h\u0131zl\u0131 bir \u015fekilde taramak\u201d tavsiye edilir. Aksi takdirde posta kutusuna eri\u015fim kaybedilebilecektir.<\/p>\n<div id=\"attachment_11813\" style=\"width: 1470px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-02.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-11813\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-02.jpg\" alt=\"QR kodu i\u00e7eren bir kimlik av\u0131 e-postas\u0131 \u00f6rne\u011fi \" width=\"1460\" height=\"960\" class=\"size-full wp-image-11813\"><\/a><p id=\"caption-attachment-11813\" class=\"wp-caption-text\">\u201cKimlik do\u011frulay\u0131c\u0131 oturumunun s\u00fcresi doldu\u201d \u2013 h\u0131zl\u0131 bir d\u00fczeltme i\u00e7in QR kodunu taray\u0131n<\/p><\/div>\n<p>Bir ba\u015fka \u00f6rnek: mesaj\u0131 okuyan ki\u015fi nazik\u00e7e bilgilendirilmektedir: \u201cBu e-posta g\u00fcvenilir bir kaynaktan gelmektedir\u201d \u2013 <a target=\"_blank\" href=\"https:\/\/www.kaspersky.com.tr\/blog\/phishing-stamp-verified\/10878\/\" rel=\"noopener\">\u00bbdo\u011frulanm\u0131\u015f\u201d damgal\u0131 e-postalara neden dikkatle yakla\u015f\u0131lmas\u0131 gerekti\u011finden<\/a> daha \u00f6nce bahsetmi\u015ftik. Mesaj\u0131n \u00f6z\u00fc, \u201c3 \u00f6nemli e-postan\u0131n\u201d bir t\u00fcr do\u011frulama eksikli\u011fi nedeniyle kullan\u0131c\u0131ya teslim edilemedi\u011fi iddias\u0131d\u0131r. Elbette, a\u015fa\u011f\u0131daki QR kodunu taramak sorunu \u00e7\u00f6zecektir.<\/p>\n<div id=\"attachment_11811\" style=\"width: 1510px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-03.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-11811\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-03.jpg\" alt=\"QR kodu i\u00e7eren bir kimlik av\u0131 e-postas\u0131 \u00f6rne\u011fi\" width=\"1500\" height=\"1321\" class=\"size-full wp-image-11811\"><\/a><p id=\"caption-attachment-11811\" class=\"wp-caption-text\">\u00d6nemli e-postalar yaln\u0131zca \u201cdo\u011frulama\u201d i\u00e7in QR kodu taranarak teslim edilebilir<\/p><\/div>\n<p>Belli ki bu e-postalar\u0131n yazarlar\u0131, deneyimsiz kullan\u0131c\u0131lar\u0131 kula\u011fa ho\u015f gelen kelimelerle korkutmak istiyor.<\/p>\n<p>Ayr\u0131ca, muhtemelen al\u0131c\u0131n\u0131n kimlik do\u011frulama uygulamalar\u0131 hakk\u0131nda bir \u015feyler duymu\u015f olmas\u0131n\u0131 umuyorlar \u2013 ki bunlar ger\u00e7ekten de QR kodlar\u0131 kullan\u0131yor \u2013 b\u00f6ylece sadece bu \u015fekilde bahsedilmeleri bile zihinlerinde baz\u0131 belirsiz \u00e7a\u011fr\u0131\u015f\u0131mlar uyand\u0131rabilir.<\/p>\n<h2>E-postadaki QR kodunu tarad\u0131\u011f\u0131n\u0131zda ne olur?<\/h2>\n<p>QR kodundaki ba\u011flant\u0131 sizi Microsoft oturum a\u00e7ma sayfas\u0131n\u0131n olduk\u00e7a ikna edici bir kopyas\u0131na g\u00f6t\u00fcr\u00fcr.<\/p>\n<div id=\"attachment_11810\" style=\"width: 1510px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-04.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-11810\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2023\/11\/02165711\/qr-codes-in-phishing-emails-04.jpg\" alt=\"QR kodu tarand\u0131\u011f\u0131nda bir kimlik av\u0131 sitesi a\u00e7\u0131l\u0131r\" width=\"1500\" height=\"1340\" class=\"size-full wp-image-11810\"><\/a><p id=\"caption-attachment-11810\" class=\"wp-caption-text\">QR kodu tarand\u0131\u011f\u0131nda, girilen kimlik bilgilerini \u00e7alan bir kimlik av\u0131 sitesine y\u00f6nlendirilirsiniz<\/p><\/div>\n<p>Elbette, bu t\u00fcr kimlik av\u0131 sayfalar\u0131na girilen t\u00fcm kimlik bilgileri siber su\u00e7lular\u0131n eline ge\u00e7er. Bu da bu t\u00fcr aldatmacalara kanan kullan\u0131c\u0131lar\u0131n hesaplar\u0131n\u0131 tehlikeye at\u0131yor.<\/p>\n<p>\u0130lgin\u00e7 bir ayr\u0131nt\u0131 da QR kodlar\u0131ndaki baz\u0131 kimlik av\u0131 ba\u011flant\u0131lar\u0131n\u0131n IPFS kaynaklar\u0131na y\u00f6nlendirmesidir. IPFS (InterPlanetary Dosya Sistemi), torrentlerle pek \u00e7ok ortak noktas\u0131 olan dosya payla\u015f\u0131lmas\u0131na y\u00f6nelik bir ileti\u015fim protokol\u00fcd\u00fcr. Alan ad\u0131 kayd\u0131, bar\u0131nd\u0131rma veya di\u011fer komplikasyonlar olmadan herhangi bir dosyay\u0131 internette yay\u0131nlaman\u0131za olanak tan\u0131r.<\/p>\n<p>Ba\u015fka bir deyi\u015fle, kimlik av\u0131 sayfas\u0131 do\u011frudan kimlik avc\u0131s\u0131n\u0131n bilgisayar\u0131nda bulunur ve \u00f6zel bir IPFS a\u011f ge\u00e7idi \u00fczerinden bir ba\u011flant\u0131 yoluyla buna eri\u015filebilir. <a target=\"_blank\" href=\"https:\/\/securelist.com\/ipfs-phishing\/109158\/\" rel=\"noopener\">Kimlik avc\u0131lar\u0131 IPFS protokol\u00fcn\u00fc kullan\u0131r<\/a> \u00e7\u00fcnk\u00fc bir kimlik av\u0131 sayfas\u0131n\u0131 yay\u0131nlamak \u201cnormal\u201d bir k\u00f6t\u00fc ama\u00e7l\u0131 web sitesini engellemekten \u00e7ok daha kolayd\u0131r ve kald\u0131rmak \u00e7ok daha zordur. Bu nedenle ba\u011flant\u0131lar daha uzun \u00f6m\u00fcrl\u00fcd\u00fcr.<\/p>\n<h2>Kimlik av\u0131 QR kodlar\u0131na kar\u015f\u0131 nas\u0131l korunulur?<\/h2>\n<p>Hi\u00e7bir iyi kimlik do\u011frulama sistemi, <em>tek se\u00e7enek<\/em> olarak bir QR kodu taraman\u0131z\u0131 \u00f6nermez. Bu nedenle, \u00f6rne\u011fin bir \u015feyi s\u00f6ylemenizi, onaylaman\u0131z\u0131, hesab\u0131n\u0131zda tekrar oturum a\u00e7man\u0131z\u0131, parolan\u0131z\u0131 s\u0131f\u0131rlaman\u0131z\u0131 veya benzer bir i\u015flem yapman\u0131z\u0131 isteyen bir e-posta al\u0131rsan\u0131z ve bu e-posta yaln\u0131zca bir QR kodu i\u00e7eriyorsa, muhtemelen bir kimlik av\u0131 giri\u015fimi ile kar\u015f\u0131 kar\u015f\u0131yas\u0131n\u0131z demektir. B\u00f6yle bir e-postay\u0131 g\u00fcvenle g\u00f6rmezden gelebilir ve silebilirsiniz.<\/p>\n<p>Ayr\u0131ca bilinmeyen bir kaynaktan gelen QR kodlar\u0131n\u0131 taraman\u0131z gereken zamanlar i\u00e7in, g\u00fcvenli QR kod taray\u0131c\u0131 i\u015flevine sahip <a href=\"https:\/\/www.kaspersky.com.tr\/premium?icid=tr_bb2023-kdplacehd_acq_ona_smm__onl_b2c_kdaily_lnk_sm-team___kprem___\" target=\"_blank\" rel=\"noopener\">g\u00fcvenlik \u00e7\u00f6z\u00fcm\u00fcm\u00fcz\u00fc<\/a> \u00f6neririz. \u00c7\u00f6z\u00fcm\u00fcm\u00fcz QR kodlar\u0131n\u0131n i\u00e7eri\u011fini kontrol edecek ve i\u00e7inde sahte bir \u015fey varsa sizi uyaracakt\u0131r.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"premium-generic\">\n","protected":false},"excerpt":{"rendered":"<p>E-postalardaki QR kodlar\u0131n\u0131n kimlik av\u0131 i\u00e7in nas\u0131l kullan\u0131ld\u0131\u011f\u0131na dair \u00f6rnekler.<\/p>\n","protected":false},"author":2598,"featured_media":11809,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1351],"tags":[1921,744,2680,1074,2679,38,2414,537],"class_list":{"0":"post-11808","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-threats","8":"tag-e-posta","9":"tag-guvenlik","10":"tag-kaspersky-qr-tarayici","11":"tag-kimlik-avi","12":"tag-kimlik-avi-belirtileri","13":"tag-microsoft","14":"tag-qr-kodlari","15":"tag-tehditler"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/qr-codes-in-phishing-emails\/11808\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/qr-codes-in-phishing-emails\/26505\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/qr-codes-in-phishing-emails\/21938\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/qr-codes-in-phishing-emails\/11130\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/qr-codes-in-phishing-emails\/29207\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/qr-codes-in-phishing-emails\/26785\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/qr-codes-in-phishing-emails\/26789\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/qr-codes-in-phishing-emails\/29273\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/qr-codes-in-phishing-emails\/28118\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/qr-codes-in-phishing-emails\/36431\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/qr-codes-in-phishing-emails\/49388\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/qr-codes-in-phishing-emails\/21125\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/qr-codes-in-phishing-emails\/21908\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/qr-codes-in-phishing-emails\/30612\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/qr-codes-in-phishing-emails\/35015\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/qr-codes-in-phishing-emails\/27089\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/qr-codes-in-phishing-emails\/32795\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/qr-codes-in-phishing-emails\/32444\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/qr-kodlari\/","name":"QR kodlar\u0131"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/11808","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2598"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=11808"}],"version-history":[{"count":3,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/11808\/revisions"}],"predecessor-version":[{"id":11816,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/11808\/revisions\/11816"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/11809"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=11808"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=11808"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=11808"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}