{"id":12474,"date":"2024-06-25T18:10:33","date_gmt":"2024-06-25T15:10:33","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=12474"},"modified":"2024-06-25T18:10:33","modified_gmt":"2024-06-25T15:10:33","slug":"password-can-be-hacked-in-one-hour","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/password-can-be-hacked-in-one-hour\/12474\/","title":{"rendered":"Bilgisayar korsanlar\u0131 parolan\u0131z\u0131 bir saat i\u00e7inde nas\u0131l k\u0131rabilir?"},"content":{"rendered":"<p>Her y\u0131l May\u0131s ay\u0131n\u0131n ilk Per\u015fembe g\u00fcn\u00fc d\u00fczenlenen <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/kaspersky-international-password-day-2024\/12275\/\" target=\"_blank\" rel=\"noopener\">D\u00fcnya Parola G\u00fcn\u00fc<\/a> ge\u00e7mi\u015f olsa da, bizim parola g\u00fcvenli\u011fine olan merak\u0131m\u0131z devam ediyor ve sizin de bu konuya olan ilgi ve merak\u0131n\u0131z\u0131n devam etti\u011fini umuyoruz. Laboratuvar \u00e7al\u0131\u015fmalar\u0131 i\u00e7in olu\u015fturulan yapay \u201ctest t\u00fcp\u00fc\u201d parolalar\u0131 analiz etmek yerine, ger\u00e7ek d\u00fcnyada kalmay\u0131 tercih ettik ve dark web\u2019de s\u0131zd\u0131r\u0131lan ger\u00e7ek parolalar\u0131 inceledik. Sonu\u00e7lar endi\u015fe vericiydi: Bu parolalar\u0131n %59\u2019u bir saatten k\u0131sa bir s\u00fcrede k\u0131r\u0131labiliyordu ve bunun i\u00e7in tek gereken modern bir grafik kart\u0131 ve biraz bilgi birikimiydi.<\/p>\n<p>Bug\u00fcnk\u00fc yaz\u0131m\u0131zda bilgisayar korsanlar\u0131n\u0131n parolalar\u0131 nas\u0131l k\u0131rd\u0131\u011f\u0131n\u0131 ve buna nas\u0131l kar\u015f\u0131 koyaca\u011f\u0131m\u0131z\u0131 a\u00e7\u0131kl\u0131yoruz (Spoiler uyar\u0131s\u0131: <a href=\"https:\/\/www.kaspersky.com.tr\/premium?icid=tr_bb2023-kdplacehd_acq_ona_smm__onl_b2c_kdaily_lnk_sm-team___kprem___\" target=\"_blank\" rel=\"noopener\">g\u00fcvenilir koruma<\/a> kullan\u0131n ve <a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">parolalar\u0131n\u0131z\u0131 s\u0131z\u0131nt\u0131lara kar\u015f\u0131 otomatik olarak kontrol edin<\/a>).<\/p>\n<h2>Parolalar\u0131 k\u0131rman\u0131n s\u0131radan yolu<\/h2>\n<p>\u00d6ncelikle \u201cparola k\u0131rmak\u201d derken neyi kastetti\u011fimizi a\u00e7\u0131klayal\u0131m. Parolay\u0131 temsil eden benzersiz bir karakter dizisi olan <a href=\"https:\/\/tr.wikipedia.org\/wiki\/Karma_i%C5%9Flevi\" target=\"_blank\" rel=\"nofollow noopener\">hash<\/a>\u2018i yani karmay\u0131 k\u0131rmaktan bahsediyoruz. \u015eirketler genellikle kullan\u0131c\u0131 parolalar\u0131n\u0131 \u00fc\u00e7 yoldan biriyle saklar:<\/p>\n<ul>\n<li><strong>D\u00fcz metin: <\/strong>Bu en basit ve en a\u00e7\u0131k yoldur; e\u011fer bir kullan\u0131c\u0131n\u0131n parolas\u0131 \u00f6rne\u011fin <em>qwerty12345<\/em> ise, o zaman \u015firket sunucusunda da <em>qwerty12345<\/em> olarak saklan\u0131r. Bir veri ihlali meydana gelirse, bilgisayar korsan\u0131n\u0131n oturum a\u00e7mak i\u00e7in yaln\u0131zca ilgili kullan\u0131c\u0131 ad\u0131 ile parolay\u0131 girmesi yeterlidir. Bu durum elbette iki fakt\u00f6rl\u00fc kimlik do\u011frulama (2FA) yoksa ger\u00e7ekle\u015febilir, ancak o zaman bile siber su\u00e7lular bazen <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/when-two-factor-authentication-useless\/12438\/\" target=\"_blank\" rel=\"noopener\">tek kullan\u0131ml\u0131k parolalar\u0131<\/a> ele ge\u00e7irebilirler.<\/li>\n<li><strong>Karmalama: <\/strong>Bu y\u00f6ntem, her bir parolay\u0131 sunucuda depolanan sabit uzunlukta bir karakter dizisi bi\u00e7iminde benzersiz bir karma de\u011fere d\u00f6n\u00fc\u015ft\u00fcrmek i\u00e7in <a href=\"https:\/\/tr.wikipedia.org\/wiki\/MD5\" target=\"_blank\" rel=\"nofollow noopener\">MD5<\/a> ve <a href=\"https:\/\/tr.wikipedia.org\/wiki\/SHA-1\" target=\"_blank\" rel=\"nofollow noopener\">SHA-1<\/a> gibi karma algoritmalar kullan\u0131r. Kullan\u0131c\u0131 parolas\u0131n\u0131 girdi\u011finde, sistem giri\u015f karakter dizisini bir karmaya d\u00f6n\u00fc\u015ft\u00fcr\u00fcr ve bunu sunucuda depolananla kar\u015f\u0131la\u015ft\u0131r\u0131r. E\u015fle\u015fiyorlarsa, parola do\u011frudur. \u0130\u015fte bir \u00f6rnek: Parolan\u0131z daha \u00f6nce bahsetti\u011fimiz <em>qwerty12345<\/em> ise, SHA-1\u2019e \u201c\u00e7evrildi\u011finde\u201d \u015fu \u015fekilde g\u00f6r\u00fcn\u00fcr: <em>4e17a448e043206801b95de317e07c839770c8b8<\/em>. Bu karmay\u0131 elde eden bilgisayar korsanlar\u0131n\u0131n, \u00f6rne\u011fin <a href=\"https:\/\/tr.wikipedia.org\/wiki\/G%C3%B6kku%C5%9Fa%C4%9F%C4%B1_tablosu\" target=\"_blank\" rel=\"nofollow noopener\">g\u00f6kku\u015fa\u011f\u0131 tablolar\u0131n\u0131<\/a> kullanarak, <em>qwerty12345<\/em> parolas\u0131n\u0131 \u00e7\u00f6zmeleri gerekir (bu i\u015fin \u201c\u015fifre k\u0131rma\u201d k\u0131sm\u0131d\u0131r). K\u0131r\u0131lan bir parola daha sonra yaln\u0131zca ele ge\u00e7irilen hizmete de\u011fil, <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/never-reuse-passwords-story\/5502\/\" target=\"_blank\" rel=\"noopener\">parolan\u0131n yeniden kullan\u0131ld\u0131\u011f\u0131 di\u011fer hesaplara<\/a> da eri\u015fmek i\u00e7in kullan\u0131labilir.<\/li>\n<li><strong>Tuzlama:<\/strong> Paket servisten al\u0131nan lezzetli bir yemekle ilgisi olmayan bu y\u00f6ntem, karmalama i\u015fleminden \u00f6nce her parolaya <a href=\"https:\/\/encyclopedia.kaspersky.com\/glossary\/salt\/\" target=\"_blank\" rel=\"noopener\">tuz<\/a> olarak bilinen rastgele bir veri dizisi ekler. Bir tuz statik olabilir veya dinamik olarak olu\u015fturulabilir. Algoritmaya bir <em>parola+tuz dizisi<\/em> girilir ve bu da farkl\u0131 bir karma ile sonu\u00e7lan\u0131r. B\u00f6ylece, \u00f6nceden hesaplanm\u0131\u015f g\u00f6kku\u015fa\u011f\u0131 tablolar\u0131 bilgisayar korsanlar\u0131 i\u00e7in i\u015fe yaramaz hale gelir. Parolalar\u0131 saklamak i\u00e7in bu y\u00f6ntemi kullanmak, k\u0131r\u0131lmalar\u0131n\u0131 \u00e7ok daha zor hale getirir.<\/li>\n<\/ul>\n<p>\u00c7al\u0131\u015fmam\u0131z i\u00e7in, d\u00fcz metin olarak s\u0131zd\u0131r\u0131lm\u0131\u015f 193 milyon paroladan olu\u015fan bir veri taban\u0131 olu\u015fturduk. Bunlar\u0131 nereden bulduk? <span style=\"text-decoration: line-through\">Nereye bakaca\u011f\u0131n\u0131z\u0131 bilmeniz gerekiyor.<\/span> Bunlar\u0131, bu t\u00fcr \u201chazinelerin\u201d genellikle serbest\u00e7e bulunabildi\u011fi dark web\u2019de bulduk. Bu veri taban\u0131n\u0131 olas\u0131 s\u0131z\u0131nt\u0131lara kar\u015f\u0131 kullan\u0131c\u0131 parolalar\u0131n\u0131 kontrol etmek i\u00e7in kulland\u0131k ancak hi\u00e7bir parolay\u0131 saklamad\u0131\u011f\u0131m\u0131zdan ve hatta g\u00f6rmedi\u011fimizden emin olabilirsiniz. <a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">Kaspersky Password Manager<\/a> uygulamam\u0131zdaki parola kasas\u0131n\u0131n <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/how-secure-is-your-password-manager\/11247\/\" target=\"_blank\" rel=\"noopener\">i\u00e7 yap\u0131s\u0131<\/a> ve parolalar\u0131n\u0131z\u0131 bilmeden onlar\u0131 <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/kaspersky-international-password-day-2024\/12275\/\" target=\"_blank\" rel=\"noopener\">ele ge\u00e7irilen parolalarla nas\u0131l e\u015fle\u015ftirdi\u011fimiz<\/a> hakk\u0131nda daha fazla bilgi edinebilirsiniz.<\/p>\n<h2>Parola k\u0131rman\u0131n maliyeti<\/h2>\n<p>Modern grafik i\u015flemciler bir parolan\u0131n g\u00fcc\u00fcn\u00fc analiz etmek i\u00e7in en iyi ara\u00e7t\u0131r. \u00d6rne\u011fin, parola kurtarma arac\u0131 <a href=\"https:\/\/hashcat.net\/hashcat\/\" target=\"_blank\" rel=\"nofollow noopener\">hashcat<\/a> ile e\u015fle\u015ftirilen RTX 4090, tuzlanm\u0131\u015f <a href=\"https:\/\/tr.wikipedia.org\/wiki\/MD5\" target=\"_blank\" rel=\"nofollow noopener\">MD5<\/a> karmalar\u0131 i\u00e7in <a href=\"https:\/\/gist.github.com\/Chick3nman\/32e662a5bb63bc4f51b847bb422222fd\" target=\"_blank\" rel=\"nofollow noopener\">saniyede 164 milyar karma (GH\/s)<\/a> h\u0131z\u0131na ula\u015f\u0131yor.<\/p>\n<p>Hem Latin harflerini (t\u00fcm\u00fc k\u00fc\u00e7\u00fck veya t\u00fcm\u00fc b\u00fcy\u00fck) hem de rakamlar\u0131 (konum ba\u015f\u0131na 36 olas\u0131 karakter) kullanan 8 karakterli bir parola hayal edelim. Olas\u0131 benzersiz kombinasyonlar\u0131n say\u0131s\u0131 2.8 trilyondur (36 \u00fczeri 8 olarak hesaplanm\u0131\u015ft\u0131r). <a href=\"https:\/\/gist.github.com\/Chick3nman\/fdf7f9ddcc0a65f6725aefede99ada4e\" target=\"_blank\" rel=\"nofollow noopener\">Saniyede 6,7 GigaHash (GH\/s<\/a>) i\u015flem g\u00fcc\u00fcne sahip g\u00fc\u00e7l\u00fc bir i\u015flemci, b\u00f6yle bir parolay\u0131 yedi dakika i\u00e7inde deneme yan\u0131lma y\u00f6ntemiyle k\u0131rabilir. Ancak yukar\u0131da bahsedilen RTX 4090 bunu sadece 17 saniyede ba\u015far\u0131yor.<\/p>\n<p>Bu t\u00fcr \u00fcst d\u00fczey bir grafik i\u015flemcinin maliyeti <a href=\"https:\/\/www.digitaltrends.com\/computing\/gpu-price-tracking\/\" target=\"_blank\" rel=\"nofollow noopener\">2.000 ABD dolar\u0131n\u0131n<\/a> biraz \u00fczerinde olsa da, b\u00f6yle bir GPU\u2019ya sahip olamayan sald\u0131rganlar bile <a href=\"https:\/\/lambdalabs.com\/service\/gpu-cloud\" target=\"_blank\" rel=\"nofollow noopener\">saati sadece birka\u00e7 dolara<\/a> kolayca bilgi i\u015flem g\u00fcc\u00fc kiralayabilir. Peki ya ayn\u0131 anda bir d\u00fczine RTX 4090 kiralarlarsa? Bu, devasa karma veri taban\u0131 s\u0131z\u0131nt\u0131lar\u0131n\u0131 kolayl\u0131kla i\u015flemek i\u00e7in yeterli g\u00fc\u00e7 sa\u011flayacakt\u0131r.<\/p>\n<h2>Parolalar\u0131n %59\u2019u bir saatten k\u0131sa s\u00fcrede k\u0131r\u0131labiliyor<\/h2>\n<p>Parola g\u00fcc\u00fcn\u00fc hem deneme yan\u0131lma hem de ak\u0131ll\u0131 tahmin algoritmalar\u0131n\u0131 kullanarak test ettik. Deneme yan\u0131lma y\u00f6nteminde bir e\u015fle\u015fme bulana kadar t\u00fcm olas\u0131 karakter kombinasyonlar\u0131 s\u0131rayla yinelenirken, ak\u0131ll\u0131 tahmin algoritmalar\u0131, \u00e7e\u015fitli karakter kombinasyonlar\u0131n\u0131n s\u0131kl\u0131k oranlar\u0131n\u0131 hesaplamak ve en yayg\u0131n kombinasyonlardan ba\u015flay\u0131p en nadir olanlara do\u011fru se\u00e7im yapmak i\u00e7in bir parola veri seti kullan\u0131larak e\u011fitilir. Securelist\u2019te bulunan <a href=\"https:\/\/securelist.com\/password-brute-force-time\/112984\/\" target=\"_blank\" rel=\"noopener\">kapsaml\u0131 ara\u015ft\u0131rmam\u0131zdan<\/a>, kullan\u0131lan algoritmalar hakk\u0131nda daha fazla bilgi edinebilirsiniz.<\/p>\n<p>Elde edilen sonu\u00e7lar sinir bozucuydu: Analiz etti\u011fimiz 193 milyon ger\u00e7ek d\u00fcnya parolas\u0131n\u0131n \u015fa\u015f\u0131rt\u0131c\u0131 bir \u015fekilde %45\u2019i (yani 87 milyon parola!) ak\u0131ll\u0131 algoritma taraf\u0131ndan bir dakikadan k\u0131sa bir s\u00fcrede, %59\u2019u bir saat i\u00e7inde, %67\u2019si bir ay i\u00e7inde k\u0131r\u0131labilmi\u015f ve parolalar\u0131n yaln\u0131zca %23\u2019\u00fc \u2013 k\u0131r\u0131labilmeleri i\u00e7in bir y\u0131ldan fazla s\u00fcre gerekti\u011finden \u2013 ger\u00e7ekten g\u00fc\u00e7l\u00fc olarak kabul edilebildi.<\/p>\n<table>\n<tbody>\n<tr>\n<td rowspan=\"2\" width=\"208\"><strong>K\u0131r\u0131lma s\u00fcresi<\/strong><\/td>\n<td colspan=\"2\" width=\"415\"><strong>Verilen y\u00f6ntem kullan\u0131larak k\u0131r\u0131labilen parolalar\u0131n y\u00fczdesi<\/strong><\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>Deneme yan\u0131lma<\/strong><\/td>\n<td width=\"208\"><strong>Ak\u0131ll\u0131 tahmin<\/strong><\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>Bir dakikadan az<\/strong><\/td>\n<td width=\"208\">%10<\/td>\n<td width=\"208\">%45<\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>1 dakika ila 1 saat<\/strong><\/td>\n<td width=\"208\">+%10 (%20)<\/td>\n<td width=\"208\">+%14 (%59)<\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>1 saat ila 1 g\u00fcn<\/strong><\/td>\n<td width=\"208\">+%6 (%26)<\/td>\n<td width=\"208\">+%8 (%67)<\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>1 g\u00fcnden 1 aya kadar<\/strong><\/td>\n<td width=\"208\">+%9 (%35)<\/td>\n<td width=\"208\">+%6 (%73)<\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>1 aydan 1 y\u0131la kadar<\/strong><\/td>\n<td width=\"208\">+%10 (%45)<\/td>\n<td width=\"208\">+%4 (%77)<\/td>\n<\/tr>\n<tr>\n<td width=\"208\"><strong>1 y\u0131ldan fazla<\/strong><\/td>\n<td width=\"208\">+%55 (%100)<\/td>\n<td width=\"208\">+%23 (%100)<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>Veri taban\u0131ndaki t\u00fcm parolalar\u0131 k\u0131rman\u0131n, sadece bir tanesini k\u0131rmaktan \u00e7ok daha fazla zaman almad\u0131\u011f\u0131n\u0131 belirtmek \u00f6nemlidir! Her iterasyonda, bir sonraki karakter kombinasyonu i\u00e7in karma hesapland\u0131ktan sonra, sald\u0131rgan genel veri taban\u0131nda ayn\u0131 kombinasyonun olup olmad\u0131\u011f\u0131n\u0131 kontrol eder. E\u011fer bulursa, s\u00f6z konusu parola \u201ck\u0131r\u0131ld\u0131\u201d olarak i\u015faretlenir ve bundan sonra algoritma di\u011fer parolalar\u0131 tahmin etmeye devam eder.<\/p>\n<h2>Ak\u0131ll\u0131 tahmin algoritmalar\u0131 neden bu kadar etkili?<\/h2>\n<p>\u0130nsanlar \u00f6ng\u00f6r\u00fclebilirdir. Nadiren ger\u00e7ekten rastgele parolalar se\u00e7eriz ve bunlar\u0131 olu\u015fturma giri\u015fimlerimiz makinelerle kar\u015f\u0131la\u015ft\u0131r\u0131ld\u0131\u011f\u0131nda s\u00f6n\u00fck kal\u0131r. Yayg\u0131n ifadelere, tarihlere, isimlere ve kal\u0131plara g\u00fcveniriz ve bu, tam da ak\u0131ll\u0131 k\u0131rma algoritmalar\u0131n\u0131n yararlanmak i\u00e7in tasarland\u0131\u011f\u0131 \u015feydir.<\/p>\n<p>Dahas\u0131, insan beyni \u00f6yle bir yap\u0131ya sahiptir ki, bir grup insandan bir ile y\u00fcz aras\u0131nda bir say\u0131 se\u00e7melerini istedi\u011finizde, \u00e7o\u011fu ayn\u0131 say\u0131lar\u0131 se\u00e7ecektir! Veritasium adl\u0131 YouTube kanal\u0131, 200.000\u2019den fazla ki\u015fiyle yapt\u0131\u011f\u0131 <a href=\"https:\/\/www.youtube.com\/watch?v=d6iQrh2TK98&amp;t=253s\" target=\"_blank\" rel=\"nofollow noopener\">anket<\/a> sonucunda en pop\u00fcler say\u0131lar\u0131n 7, 37, 42, 69, 73 ve 77 oldu\u011funu tespit etti.<\/p>\n<div id=\"attachment_12478\" style=\"width: 1717px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2024\/06\/25175705\/password-can-be-hacked-in-one-hour-01.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-12478\" class=\"size-full wp-image-12478\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2024\/06\/25175705\/password-can-be-hacked-in-one-hour-01.jpg\" alt='Veritasium anketinin sonu\u00e7lar\u0131. &lt;a href=\"https:\/\/www.youtube.com\/watch?v=d6iQrh2TK98&amp;t=253s\" target=\"_blank\" rel=\"nofollow noopener\"&gt;Kaynak&lt;\/a&gt;' width=\"1707\" height=\"956\"><\/a><p id=\"caption-attachment-12478\" class=\"wp-caption-text\">Veritasium anketinin sonu\u00e7lar\u0131. <a href=\"https:\/\/www.youtube.com\/watch?v=d6iQrh2TK98&amp;t=253s\" target=\"_blank\" rel=\"nofollow noopener\">Kaynak<\/a><\/p><\/div>\n<p>Rastgele karakter dizileri denerken bile, klavyenin ortas\u0131ndaki tu\u015flar\u0131 tercih etme e\u011filimindeyiz. Analiz etti\u011fimiz t\u00fcm parolalar\u0131n yakla\u015f\u0131k %57\u2019sinin s\u00f6zl\u00fckte yer alan bir kelime veya s\u0131k kullan\u0131lan bir sembol kombinasyonu i\u00e7erdi\u011fi tespit edildi. Endi\u015fe verici bir \u015fekilde, bu parolalar\u0131n %51\u2019i bir dakikadan k\u0131sa s\u00fcrede, %67\u2019si bir saatten k\u0131sa s\u00fcrede ve sadece %12\u2019si bir y\u0131ldan uzun s\u00fcrede k\u0131r\u0131labilmi\u015ftir. Di\u011fer taraftan, en az birka\u00e7 parola sadece bir s\u00f6zl\u00fck kelimesinden olu\u015fuyordu ki bunlar da bir dakika i\u00e7inde k\u0131r\u0131labildi. Kar\u015f\u0131la\u015ft\u0131\u011f\u0131m\u0131z parola kal\u0131plar\u0131 hakk\u0131nda daha fazla bilgi i\u00e7in <a href=\"https:\/\/securelist.com\/password-brute-force-time\/112984\/\" target=\"_blank\" rel=\"noopener\">Securelist yaz\u0131m\u0131za<\/a> bak\u0131n.<\/p>\n<p>Ak\u0131ll\u0131 algoritmalar, s\u00f6zl\u00fck dizileri i\u00e7eren \u00e7o\u011fu parolay\u0131 k\u0131sa s\u00fcrede \u00e7\u00f6zer ve hatta karakter de\u011fi\u015fimlerini bile yakalarlar; yani \u201cpassword\u201d yerine \u201cpa$$word\u201d veya \u201cadmin\u201d yerine \u201c@dmin\u201d yazmak parolay\u0131 \u00e7ok daha g\u00fc\u00e7l\u00fc hale getirmeyecektir. Pop\u00fcler kelimeleri ve say\u0131 dizilerini kullanmak da ayn\u0131 derecede risklidir. \u0130nceledi\u011fimiz \u015fifrelerin %4\u2019\u00fcnde a\u015fa\u011f\u0131daki ifadelere rastlanm\u0131\u015ft\u0131r:<\/p>\n<ul>\n<li>12345<\/li>\n<li>123456<\/li>\n<li>love<\/li>\n<li>12345678<\/li>\n<li>123456789<\/li>\n<li>admin<\/li>\n<li>team<\/li>\n<li>qwer<\/li>\n<li>54321<\/li>\n<li>password<\/li>\n<\/ul>\n<h2>\u00d6neriler<\/h2>\n<p>Uygulamal\u0131 \u00e7al\u0131\u015fmam\u0131zdan \u00e7\u0131kan sonu\u00e7lar:<\/p>\n<ul>\n<li>Bir\u00e7ok kullan\u0131c\u0131 parolas\u0131 yeterince g\u00fc\u00e7l\u00fc de\u011fildir; bunlar\u0131n %59\u2019u bir saat i\u00e7inde k\u0131r\u0131labilir.<\/li>\n<li>Parolan\u0131zda anlaml\u0131 kelimeler, isimler ve standart karakter dizileri kullanmak parola tahmin s\u00fcresini \u00f6nemli \u00f6l\u00e7\u00fcde azalt\u0131r.<\/li>\n<li>En g\u00fcvenilir olmayan parolalar tamamen rakamlardan veya sadece kelimelerden olu\u015fan parolalard\u0131r.<\/li>\n<\/ul>\n<p>Hesaplar\u0131n\u0131z\u0131 g\u00fcvende tutmak i\u00e7in a\u015fa\u011f\u0131daki basit \u00f6nerileri dikkate al\u0131n:<\/p>\n<ul>\n<li><a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">Kaspersky Password Manager<\/a> kullanarak g\u00fc\u00e7l\u00fc parolalar olu\u015fturun.<\/li>\n<li>Kendiniz bir parola olu\u015fturmaya karar verirseniz, anlaml\u0131 kelime kombinasyonlar\u0131, isimler veya s\u00f6zl\u00fckte yer alan kelimeler yerine <a href=\"https:\/\/www.youtube.com\/shorts\/Y850Cx5Zc7M\" target=\"_blank\" rel=\"nofollow noopener\">an\u0131msat\u0131c\u0131 parolalar<\/a> kullan\u0131n.<\/li>\n<li><a href=\"https:\/\/www.kaspersky.com.tr\/blog\/never-reuse-passwords-story\/5502\/\" target=\"_blank\" rel=\"noopener\">Parolalar\u0131 asla farkl\u0131 sitelerde tekrar kullanmay\u0131n<\/a>, \u00e7\u00fcnk\u00fc t\u00fcm \u015firketler kullan\u0131c\u0131 verilerini g\u00fcvenli bir \u015fekilde saklamaz.<\/li>\n<li><a href=\"https:\/\/www.kaspersky.com.tr\/blog\/how-to-store-passwords-securely\/11684\/\" target=\"_blank\" rel=\"noopener\">Parolalar\u0131n\u0131z\u0131 asla taray\u0131c\u0131lara kaydetmeyin<\/a>.<\/li>\n<li>Parolalar\u0131n\u0131z\u0131 g\u00fcvenli bir \u015fekilde bir <a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">parola y\u00f6neticisinde<\/a> saklay\u0131n ve bunun i\u00e7in k\u0131r\u0131lmaya kar\u015f\u0131 dayan\u0131kl\u0131 bir birincil parola olu\u015fturun.<\/li>\n<li>Parolan\u0131z\u0131n k\u0131r\u0131lmaya kar\u015f\u0131 ne kadar dayan\u0131kl\u0131 oldu\u011funu <a href=\"https:\/\/password.kaspersky.com\/tr\/\" target=\"_blank\" rel=\"noopener\">Parola Denetleyicisi <\/a>ile veya do\u011frudan <a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">Kaspersky Password Manager<\/a> uygulaman\u0131z \u00fczerinden kontrol edin. Uygulama; zay\u0131f ve yinelenen parolalar\u0131 tespit eder, t\u00fcm parolalar\u0131n\u0131z\u0131 ele ge\u00e7irilmi\u015f veri tabanlar\u0131na g\u00f6re kontrol eder ve bir e\u015fle\u015fme bulunursa sizi uyar\u0131r.<\/li>\n<li>Sizin ve aile \u00fcyelerinizin telefonlar\u0131na veya e-posta adreslerine ba\u011fl\u0131 t\u00fcm hesaplar\u0131 veri s\u0131z\u0131nt\u0131lar\u0131na kar\u015f\u0131 arka planda s\u00fcrekli olarak izlemek i\u00e7in <a href=\"https:\/\/www.kaspersky.com.tr\/premium?icid=tr_bb2023-kdplacehd_acq_ona_smm__onl_b2c_kdaily_lnk_sm-team___kprem___\" target=\"_blank\" rel=\"noopener\">Kaspersky Premium<\/a> uygulamas\u0131n\u0131 kullan\u0131n.<\/li>\n<li>M\u00fcmk\u00fcn olan her yerde <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/what-is-two-factor-authentication\/11564\/\" target=\"_blank\" rel=\"noopener\">2FA<\/a>\u2018y\u0131 etkinle\u015ftirin. Bu arada <a href=\"https:\/\/www.kaspersky.com.tr\/password-manager?icid=tr_kdailyplacehold_acq_ona_smm__onl_b2c_kasperskydaily_wpplaceholder____kpm___\" target=\"_blank\" rel=\"noopener\">Kaspersky Password Manager<\/a>, 2FA belirte\u00e7lerini kaydetmenize ve tek seferlik kodlar olu\u015fturman\u0131za da olanak tan\u0131r.<\/li>\n<\/ul>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kpm\">\n","protected":false},"excerpt":{"rendered":"<p>On paroladan neredeyse alt\u0131s\u0131, modern bir grafik kart\u0131 veya bulut hizmetleri kullan\u0131larak bir saatten k\u0131sa bir s\u00fcrede k\u0131r\u0131labilir. Tek maliyet birka\u00e7 dolar ve biraz bo\u015f zamand\u0131r. Bu \u00e7al\u0131\u015fmam\u0131zda bunun nas\u0131l m\u00fcmk\u00fcn oldu\u011funu ve bu konuda ne yap\u0131lmas\u0131 gerekti\u011fini ele ald\u0131k.<\/p>\n","protected":false},"author":2761,"featured_media":12475,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[994,1351],"tags":[2634,500,2739,1105,2605,1525,561,2007],"class_list":{"0":"post-12474","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-privacy","8":"category-threats","9":"tag-bilgisayar-korsanligi","10":"tag-gizlilik","11":"tag-ihlaller","12":"tag-kaspersky-password-manager","13":"tag-kaspersky-premium","14":"tag-parolalar","15":"tag-sifreler","16":"tag-sizintilar"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/password-can-be-hacked-in-one-hour\/12474\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/password-can-be-hacked-in-one-hour\/27588\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/password-can-be-hacked-in-one-hour\/22905\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/password-can-be-hacked-in-one-hour\/11743\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/password-can-be-hacked-in-one-hour\/30259\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/password-can-be-hacked-in-one-hour\/27738\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/password-can-be-hacked-in-one-hour\/27453\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/password-can-be-hacked-in-one-hour\/30120\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/password-can-be-hacked-in-one-hour\/28999\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/password-can-be-hacked-in-one-hour\/37700\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/password-can-be-hacked-in-one-hour\/51469\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/password-can-be-hacked-in-one-hour\/21965\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/password-can-be-hacked-in-one-hour\/22708\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/password-can-be-hacked-in-one-hour\/31367\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/password-can-be-hacked-in-one-hour\/36587\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/password-can-be-hacked-in-one-hour\/29189\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/password-can-be-hacked-in-one-hour\/27904\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/password-can-be-hacked-in-one-hour\/33732\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/password-can-be-hacked-in-one-hour\/33396\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/parolalar\/","name":"parolalar"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/12474","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2761"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=12474"}],"version-history":[{"count":5,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/12474\/revisions"}],"predecessor-version":[{"id":12477,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/12474\/revisions\/12477"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/12475"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=12474"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=12474"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=12474"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}