{"id":13859,"date":"2025-10-08T14:34:20","date_gmt":"2025-10-08T11:34:20","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=13859"},"modified":"2025-10-08T14:34:20","modified_gmt":"2025-10-08T11:34:20","slug":"is-it-time-for-xdr","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/is-it-time-for-xdr\/13859\/","title":{"rendered":"XDR’a ge\u00e7me zaman\u0131 gelmi\u015f olabilir mi?"},"content":{"rendered":"

\u201cHedef olmak i\u00e7in \u00e7ok k\u00fc\u00e7\u00fc\u011f\u00fcz\u201d \u015feklindeki yanl\u0131\u015f kan\u0131, g\u00fcn\u00fcm\u00fczde giderek azalmaktad\u0131r. Son y\u0131llarda meydana gelen \u00e7ok say\u0131da tedarik zinciri sald\u0131r\u0131s\u0131, sofistike bir sald\u0131r\u0131yla kar\u015f\u0131 kar\u015f\u0131ya kalmak i\u00e7in sald\u0131rganlar\u0131n en b\u00fcy\u00fck hedefi olmak gerekmedi\u011fini g\u00f6stermi\u015ftir. Tek gereken, b\u00fcy\u00fck bir m\u00fc\u015fteri veya i\u015f orta\u011f\u0131na sahip olmak ya da geni\u015f bir m\u00fc\u015fteri taban\u0131na sahip olmakt\u0131r. Bu nedenle bir\u00e7ok k\u00fc\u00e7\u00fck ve orta \u00f6l\u00e7ekli i\u015fletme (KOB\u0130) uzun zamand\u0131r EDR \u00e7\u00f6z\u00fcmlerini benimsemi\u015ftir. Neyse ki, piyasada k\u00fc\u00e7\u00fck \u015firketlerin bile eri\u015febilece\u011fi ve y\u00f6netimi pek de zor olmayan modern EDR \u00fcr\u00fcnleri bulunmaktad\u0131r.<\/p>\n

Ancak EDR i\u015flevselli\u011fi ihtiya\u00e7lar\u0131n\u0131z i\u00e7in yeterli mi, yoksa XDR\u2019\u0131 d\u00fc\u015f\u00fcnmeye ba\u015flaman\u0131n zaman\u0131 geldi mi? Bunu cevaplamak i\u00e7in, kendinize d\u00f6rt soru daha sorman\u0131z gerekir.<\/p>\n

Siber g\u00fcvenlik ekibiniz uyar\u0131lar\u0131n yo\u011funlu\u011fuyla ba\u015fa \u00e7\u0131kabiliyor mu?<\/h2>\n

EDR konsolunu kullanan her siber g\u00fcvenlik \u00e7al\u0131\u015fan\u0131, \u00e7ok say\u0131da u\u00e7 nokta uyar\u0131s\u0131n\u0131 i\u015flemek zorundad\u0131r. Tek bir olay y\u00fczlerce benzer uyar\u0131y\u0131 tetikleyebilir; \u00f6rne\u011fin, ayn\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 dosya y\u00fcz farkl\u0131 u\u00e7 noktada tespit edilebilir. Bu uyar\u0131lar\u0131n her biri, siber g\u00fcvenlik uzman\u0131n\u0131n zaman\u0131n\u0131 ve dikkatini t\u00fcketir. Bu tekrarlayan, yorucu i\u015fler g\u00fcvenlik ekibinin t\u00fckenmi\u015fli\u011finin ba\u015fl\u0131ca nedenidir.<\/p>\n

Kaspersky Next XDR Optimum<\/a> ile, ilgili uyar\u0131lar bir araya getirilerek operat\u00f6rlerin olay\u0131n daha eksiksiz bir resmini an\u0131nda g\u00f6rebilmeleri sa\u011flan\u0131r. Yan\u0131t eylemleri, tek tek ele almak yerine tek bir t\u0131klama ile t\u00fcm benzer uyar\u0131lara uygulanabilir. Bu, ekibin i\u015f y\u00fck\u00fcn\u00fc azalt\u0131r ve olaylara m\u00fcdahale s\u00fcresini \u00f6nemli \u00f6l\u00e7\u00fcde k\u0131salt\u0131r.<\/p>\n

Uzmanlar\u0131n\u0131z\u0131n olaylar\u0131 ara\u015ft\u0131rmak i\u00e7in yeterli zaman\u0131 var m\u0131?<\/h2>\n

EDR \u00e7\u00f6z\u00fcm\u00fcn\u00fcz\u00fcn i\u015f istasyonlar\u0131n\u0131zdan birinde k\u00f6t\u00fc ama\u00e7l\u0131 bir etkinlik tespit etti\u011fini varsayal\u0131m. EDR operat\u00f6r\u00fcn\u00fcn mant\u0131kl\u0131 tepkisi, cihaz\u0131 izole etmek ve kapsaml\u0131 bir \u015fekilde incelemektir. Ancak bu zaman al\u0131r ve ciddi bir olay s\u00f6z konusu oldu\u011funda zaman, sahip olmad\u0131\u011f\u0131n\u0131z tek \u015feydir. \u0130lk olarak, sald\u0131r\u0131n\u0131n hangi a\u015famada tespit edildi\u011fi hemen anla\u015f\u0131lmayabilir. Sald\u0131rganlar di\u011fer u\u00e7 noktalara da eri\u015fim sa\u011flam\u0131\u015f olabilir. \u0130kincisi, g\u00fcn\u00fcm\u00fczde \u00e7ok say\u0131da sald\u0131r\u0131, kurumsal kimlik bilgilerinin ele ge\u00e7irilmesi nedeniyle ger\u00e7ekle\u015fmektedir. Operat\u00f6r, bir \u00e7al\u0131\u015fan\u0131n yanl\u0131\u015fl\u0131kla k\u00f6t\u00fc ama\u00e7l\u0131 bir e-posta ekini a\u00e7\u0131p a\u00e7mad\u0131\u011f\u0131n\u0131 veya bir yabanc\u0131 ki\u015finin o \u00e7al\u0131\u015fan\u0131n kimli\u011fi ile oturum a\u00e7arak altyap\u0131ya sald\u0131r\u0131p sald\u0131rmad\u0131\u011f\u0131n\u0131 bilemez. \u0130kincisi s\u00f6z konusuysa, ayn\u0131 kullan\u0131c\u0131 ad\u0131 ve parola ile ba\u015fka bir yerde eri\u015fim sa\u011flamaya \u00e7al\u0131\u015fabilirler.<\/p>\n

Next XDR Optimum, do\u011frudan uyar\u0131 kart\u0131ndan Active Directory\u2019de kullan\u0131c\u0131lar\u0131 engellemenizi sa\u011flar. Bu, sald\u0131r\u0131y\u0131 kontrol alt\u0131na almaya, olas\u0131 hasar\u0131 s\u0131n\u0131rland\u0131rmaya ve daha kapsaml\u0131 bir soru\u015fturma i\u00e7in de\u011ferli zaman\u0131 geri kazanmaya yard\u0131mc\u0131 olur.<\/p>\n

Siber g\u00fcvenlik ekibiniz tehditlere yan\u0131t verirken yeterli ba\u011flama sahip mi?<\/h2>\n

EDR uyar\u0131s\u0131, operat\u00f6re bir i\u015f istasyonunda k\u00f6t\u00fc ama\u00e7l\u0131 bir dosya tespit edildi\u011fini bildirir, b\u00f6ylece operat\u00f6r savunma \u00f6nlemleri almaya ba\u015flayabilir. Ama bazen bu yeterli olmaz. K\u00f6t\u00fc ama\u00e7l\u0131 bir dosya, tespit edilmesi ve \u00f6nlenmesi i\u00e7in daha derinlemesine bir ara\u015ft\u0131rma gerektiren daha b\u00fcy\u00fck bir sald\u0131r\u0131n\u0131n sadece bir par\u00e7as\u0131 olabilir.<\/p>\n

Next XDR Optimum, operat\u00f6rlerin Kaspersky Cloud Sandbox\u2019a eri\u015fimini sa\u011flar. Burada \u015f\u00fcpheli dosyalar izole bir bulut ortam\u0131na y\u00fcklenebilir ve ger\u00e7ekte ne yapt\u0131klar\u0131n\u0131 g\u00f6rmek i\u00e7in g\u00fcvenli bir \u015fekilde analiz edilebilir. Sistem, g\u00fcvenlik ihlali olu\u015fturmaya yard\u0131mc\u0131 olur ve altyap\u0131y\u0131 di\u011fer u\u00e7 noktalardaki ayn\u0131 tehditlere kar\u015f\u0131 h\u0131zl\u0131 bir \u015fekilde taramaya olanak tan\u0131r.<\/p>\n

\u00c7al\u0131\u015fanlar\u0131n\u0131z siber tehditlerin yeterince fark\u0131nda m\u0131?<\/h2>\n

Uyar\u0131 y\u00fcklemesi sorununa geri d\u00f6nersek: Bir olay\u0131 ara\u015ft\u0131r\u0131rken EDR sistemi ile \u00e7al\u0131\u015fan siber g\u00fcvenlik uzmanlar\u0131, bazen uyar\u0131n\u0131n nedeninin insan hatas\u0131 oldu\u011funu fark ederler. Mesela, birisi bir e-postadaki k\u00f6t\u00fc ama\u00e7l\u0131 eki a\u00e7m\u0131\u015f veya bir kimlik av\u0131 web sayfas\u0131na y\u00f6nlendiren bir ba\u011flant\u0131y\u0131 t\u0131klam\u0131\u015ft\u0131r. Deneyimler, \u00e7al\u0131\u015fanlar\u0131n fark\u0131ndal\u0131\u011f\u0131n\u0131n art\u0131r\u0131lmas\u0131n\u0131n genel olarak siber g\u00fcvenlik ekiplerinin i\u015f y\u00fck\u00fcn\u00fc ve \u00f6zellikle de uyar\u0131 hacmini \u00f6nemli \u00f6l\u00e7\u00fcde azaltt\u0131\u011f\u0131n\u0131 g\u00f6stermektedir. Bu ama\u00e7la, iyi tasarlanm\u0131\u015f bir e\u011fitim program\u0131, derslerden ve ara s\u0131ra yap\u0131lan hat\u0131rlatmalardan daha etkilidir.<\/p>\n

Bu avantaj, XDR i\u015flevselli\u011fi ile do\u011frudan ilgili de\u011fildir; ancak, her Kaspersky Next XDR Optimum lisans\u0131, y\u00fcksek etkili olaylara neden olma olas\u0131l\u0131\u011f\u0131 en y\u00fcksek olan \u00e7al\u0131\u015fanlar (y\u00f6neticiler, finans ekibi \u00fcyeleri, ayr\u0131cal\u0131kl\u0131 kullan\u0131c\u0131lar ve daha \u00f6nce sosyal m\u00fchendisli\u011fin kurban\u0131 olmu\u015f ki\u015filer) i\u00e7in hedefli Kaspersky G\u00fcvenlik Fark\u0131ndal\u0131\u011f\u0131 e\u011fitimi i\u00e7erir. Ancak en \u00f6nemlisi, Next XDR Optimum, siber g\u00fcvenlik uzman\u0131n\u0131n olay m\u00fcdahalesini kesintiye u\u011fratmadan, uyar\u0131 kart\u0131ndan do\u011frudan kullan\u0131c\u0131ya ilgili bir kurs atamas\u0131n\u0131 sa\u011flar. Deneyimler, bir olaya neden olan bir ba\u015far\u0131s\u0131zl\u0131\u011f\u0131n hemen ard\u0131ndan al\u0131nan derslerin \u00f6zellikle ak\u0131lda kal\u0131c\u0131 ve yararl\u0131 oldu\u011funu ve bu nedenle gelecekte ayn\u0131 hatan\u0131n tekrar yap\u0131lmas\u0131n\u0131 \u00f6nlemeye yard\u0131mc\u0131 oldu\u011funu g\u00f6stermektedir.<\/p>\n

Siber g\u00fcvenlik ekibiniz uyar\u0131larla bo\u011fulmu\u015f hissediyorsa veya daha fazla y\u00f6netim arac\u0131na ve tehdit ba\u011flam\u0131na ihtiya\u00e7 duyuyorsa, Kaspersky XDR Optimum<\/a>\u2018a ge\u00e7meyi d\u00fc\u015f\u00fcnmeye de\u011fer. Kaspersky EDR Optimum\u2019dan XDR Optimum\u2019a ge\u00e7i\u015f i\u00e7in ek kaynaklara veya personelin yeniden e\u011fitim almas\u0131na gerek olmaz. Maliyetteki hafif art\u0131\u015f ise, \u015firketinizin altyap\u0131 g\u00fcvenli\u011findeki \u00f6nemli iyile\u015fmeyle k\u0131yasland\u0131\u011f\u0131nda \u00e7ok d\u00fc\u015f\u00fck kal\u0131r.<\/p>\n\n","protected":false},"excerpt":{"rendered":"

Kaspersky Next \u00fcr\u00fcn serimizi \u00f6rnek olarak kullanarak, XDR Optimum ve EDR Optimum aras\u0131ndaki pratik farklar\u0131 a\u00e7\u0131kl\u0131yoruz. <\/p>\n","protected":false},"author":2757,"featured_media":13860,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1194,1727,1285],"tags":[1363,2042,2202],"class_list":{"0":"post-13859","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-smb","9":"category-products","10":"tag-edr","11":"tag-kaspersky-next","12":"tag-xdr"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/is-it-time-for-xdr\/13859\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/is-it-time-for-xdr\/29687\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/is-it-time-for-xdr\/24759\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/is-it-time-for-xdr\/12863\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/is-it-time-for-xdr\/29577\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/is-it-time-for-xdr\/28609\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/is-it-time-for-xdr\/54433\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/is-it-time-for-xdr\/24330\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/is-it-time-for-xdr\/35519\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/is-it-time-for-xdr\/35144\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/kaspersky-next\/","name":"Kaspersky Next"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/13859","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2757"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=13859"}],"version-history":[{"count":5,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/13859\/revisions"}],"predecessor-version":[{"id":13865,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/13859\/revisions\/13865"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/13860"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=13859"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=13859"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=13859"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}