{"id":4521,"date":"2017-12-14T10:01:29","date_gmt":"2017-12-14T07:01:29","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=4521"},"modified":"2019-11-15T14:45:48","modified_gmt":"2019-11-15T11:45:48","slug":"what-is-spearphishing","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/what-is-spearphishing\/4521\/","title":{"rendered":"Hedef odakl\u0131 kimlik av\u0131 nedir?"},"content":{"rendered":"<p>Blo\u011fumuza ilk defa gelmiyorsan\u0131z, kimlik av\u0131n\u0131n ne oldu\u011funu biliyor olmal\u0131s\u0131n\u0131z. Bilmiyorsan\u0131z <a href=\"https:\/\/www.kaspersky.com\/blog\/how-to-avoid-phishing\/6145\/\" target=\"_blank\" rel=\"noopener nofollow\">bu yaz\u0131m\u0131z\u0131<\/a> mutlaka okuyun. K\u0131saca, kimlik av\u0131 ki\u015fisel verileri elde etmeyi ama\u00e7layan bir doland\u0131r\u0131c\u0131l\u0131k t\u00fcr\u00fcd\u00fcr: oturum a\u00e7ma, parolalar, c\u00fczdan numaralar\u0131 gibi. As\u0131l olarak da dijital <a href=\"https:\/\/www.kaspersky.com\/blog\/social-engineering-hacking-the-human-os\/3386\/\" target=\"_blank\" rel=\"noopener nofollow\">sosyal m\u00fchendisliktir<\/a>.<\/p>\n<p>Kimlik av\u0131n\u0131n bir de <em>hedef odakl\u0131 kimlik av\u0131<\/em> olarak bilinen bir t\u00fcr\u00fc bulunur. Hedef odakl\u0131 kimlik av\u0131n\u0131n belirli bir insan\u0131 veya belirli bir \u015firketin \u00e7al\u0131\u015fanlar\u0131n\u0131 hedef almas\u0131, onu di\u011fer kimlik av\u0131 t\u00fcrlerinden ay\u0131r\u0131r.<\/p>\n<p>Bu hedefleme kimlik av\u0131n\u0131 daha tehlikeli getiriyor: siber su\u00e7lular \u201cyemi\u201d daha cazip hale getirmek i\u00e7in \u00f6zenle kurban hakk\u0131nda bilgi toplar. \u0130yi haz\u0131rlanm\u0131\u015f bir hedef odakl\u0131 kimlik av\u0131 e-postas\u0131n\u0131n me\u015fru e-postadan ay\u0131rt edilmesi olduk\u00e7a zor olabilir. \u00d6zetle, hedef odakl\u0131 kimlik av\u0131, kurban\u0131 yakalamay\u0131 kolayla\u015ft\u0131r\u0131r.<\/p>\n<h2>Hedef odakl\u0131 kimlik av\u0131n\u0131 kim, neden kullan\u0131r<\/h2>\n<p>Hedef odakl\u0131 kimlik av\u0131n\u0131n arkas\u0131nda iki neden bulunuyor: para ve\/veya gizli bilgi \u00e7almak. Her iki durumda da ilk i\u015f kurumsal a\u011fa girmek. Genellikle \u00e7al\u0131\u015fanlara k\u00f6t\u00fc ama\u00e7l\u0131 belge veya ar\u015fiv eklenmi\u015f e-postalar g\u00f6nderiliyor. \u00d6rne\u011fin <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/silence-financial-apt\/4372\/\" target=\"_blank\" rel=\"noopener\">Silence (Sessizlik)<\/a> sald\u0131r\u0131lar\u0131n\u0131n arkas\u0131ndaki grup bu \u015fekilde \u00e7al\u0131\u015f\u0131yordu.<\/p>\n<p>Microsoft Word makrolar\u0131 veya JavaScript koduyla bir belge silaha d\u00f6n\u00fc\u015ft\u00fcr\u00fclebilir: Bunlar en basit haliyle, kurban\u0131n bilgisayar\u0131na \u00e7ok daha ciddi k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m y\u00fckleme amac\u0131yla standart dosyalara yerle\u015ftirilen k\u00fc\u00e7\u00fck programlard\u0131r. Bu k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m daha sonra hedeflenen a\u011fa yay\u0131l\u0131r veya elde edebilece\u011fi t\u00fcm bilgiyi al\u0131koyar, bu \u015fekilde yaz\u0131l\u0131m\u0131n geli\u015ftiricileri de a\u011fda arad\u0131klar\u0131n\u0131 bulabilir.<\/p>\n<p>Hedef odakl\u0131 kimlik av\u0131, a\u011f\u0131n\u0131 olabildi\u011fince geni\u015f tutmaya \u00e7al\u0131\u015fan k\u00fc\u00e7\u00fck \u00e7apl\u0131 doland\u0131r\u0131c\u0131lar i\u00e7in de\u011fildir. Basit doland\u0131r\u0131c\u0131lar\u0131n silahlar\u0131n\u0131 \u00f6zelle\u015ftirecek zaman\u0131 veya ara\u00e7lar\u0131 olmaz.<\/p>\n<p>Hedef odakl\u0131 kimlik av\u0131, b\u00fcy\u00fck i\u015fletmeler, bankalar veya n\u00fcfuz sahibi insanlara yap\u0131lan b\u00fcy\u00fck sald\u0131r\u0131lar i\u00e7in kullan\u0131lan bir ara\u00e7t\u0131r. <a href=\"https:\/\/securelist.com\/the-great-bank-robbery-the-carbanak-apt\/68732\/\" target=\"_blank\" rel=\"noopener\">Carbanak<\/a> veya <a href=\"https:\/\/securelist.com\/blackenergy-apt-attacks-in-ukraine-employ-spearphishing-with-word-documents\/73440\/\" target=\"_blank\" rel=\"noopener\">BlackEnergy<\/a> gibi geni\u015f APT sald\u0131r\u0131lar\u0131nda yay\u0131l\u0131r. Hedef odakl\u0131 kimlik av\u0131 ayn\u0131 zamanda bir e-mail bula\u015fmas\u0131yla <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/bad-rabbit-ransomware\/4326\/\" target=\"_blank\" rel=\"noopener\">Bad Rabbit<\/a> sald\u0131r\u0131lar\u0131nda da kullan\u0131lm\u0131\u015ft\u0131.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"ksos\">\n<h2>Kimler hedefleniyor<\/h2>\n<p>Hedef odakl\u0131 kimlik av\u0131n\u0131n en yayg\u0131n hedefleri ya k\u00e2rl\u0131 bilgilere eri\u015fimi olan y\u00fcksek d\u00fczeydeki \u00e7al\u0131\u015fanlar ya da i\u015fi gere\u011fi d\u0131\u015f kaynaklardan \u00e7ok say\u0131da belge a\u00e7mas\u0131 gereken departman \u00e7al\u0131\u015fanlar\u0131d\u0131r.<\/p>\n<p>\u00d6rne\u011fin \u0130K departmanlar\u0131. Her t\u00fcrl\u00fc dosya bi\u00e7iminde bir\u00e7ok \u00f6zge\u00e7mi\u015f ediniyorlar. Bilinmeyen kaynaklardan gelen e-postalar hi\u00e7 de \u015fa\u015f\u0131rt\u0131c\u0131 veya \u015f\u00fcpheli olmuyor. Halkla ili\u015fkiler ve sat\u0131\u015f departmanlar\u0131 da di\u011fer alanlar gibi savunmas\u0131z.<\/p>\n<p>Muhasebe departmanlar\u0131 \u00f6zel risk alt\u0131ndad\u0131r. Her \u015feyden \u00f6nce onlar \u00fcstlenici, d\u00fczenleyici ve daha kim bilir kimlerle u\u011fra\u015f\u0131yorlar. Ayr\u0131ca tabii ki finans ve bankac\u0131l\u0131k yaz\u0131l\u0131mlar\u0131yla \u00e7al\u0131\u015f\u0131yorlar. Paraya a\u00e7 korsanlar i\u00e7in muhasebe uygun bir av oluyor.<\/p>\n<p>Casuslar ise sistem y\u00f6neticileri ve BT personeli gibi sistemin i\u00e7ine eri\u015fimi olan insanlarla ilgileniyor.<\/p>\n<p>Hedef odakl\u0131 kimlik av\u0131n\u0131n yaln\u0131zca b\u00fcy\u00fck \u015firketlere odakland\u0131\u011f\u0131n\u0131 d\u00fc\u015f\u00fcnmeyin sak\u0131n. K\u00fc\u00e7\u00fck i\u015fletmeler de davetsiz misafirlere olduk\u00e7a ilgin\u00e7 geliyor. B\u00fcy\u00fck i\u015fletmelerin casuslu\u011fa maruz kalma ihtimali daha y\u00fcksekken, k\u00fc\u00e7\u00fck i\u015fletmeler de h\u0131rs\u0131zl\u0131ktan muzdarip.<\/p>\n<h2>Hedef odakl\u0131 kimlik av\u0131na kar\u015f\u0131 koruma \u00f6nlemleri<\/h2>\n<p>Genel olarak hedef odakl\u0131 kimlik av\u0131na kar\u015f\u0131 koruma sa\u011flayan en etkili y\u00f6ntemler di\u011fer kimlik av\u0131 t\u00fcrleri i\u00e7in olanlarla kabaca ayn\u0131d\u0131r. Bu tehdide kar\u015f\u0131 maksimum koruma i\u00e7in <a href=\"https:\/\/www.kaspersky.com\/blog\/phishing-ten-tips\/10550\/\" target=\"_blank\" rel=\"noopener nofollow\">10 ipucu<\/a> i\u00e7eren g\u00f6nderimize bakabilirsiniz. Aradaki tek fark ise hedef odakl\u0131 kimlik av\u0131n\u0131n daha dikkatli bir yakla\u015f\u0131m gerektirmesi.<\/p>\n<p>\u0130deal olarak kimlik av\u0131 e-postalar\u0131n\u0131n en ba\u015f\u0131ndan posta kutunuza ula\u015fmamas\u0131 gerekiyor. Bir \u015firketin altyap\u0131s\u0131nda benzeri mesajlar \u015firketin posta sunucusu d\u00fczeyinde filtrelenmelidir. \u00d6zel yaz\u0131l\u0131m paketleri yard\u0131mc\u0131 olabilir. \u00d6rne\u011fin <a href=\"https:\/\/www.kaspersky.com.tr\/small-to-medium-business-security\/mail-server\" target=\"_blank\" rel=\"noopener\">Kaspersky Security for Mail Server<\/a>, k\u00f6t\u00fc ama\u00e7l\u0131 ekleri ve kimlik av\u0131 ba\u011flant\u0131lar\u0131n\u0131 engellemek i\u00e7in bulut teknolojisini kullan\u0131r.<\/p>\n<p>Ancak daha iyi sonu\u00e7lar almak i\u00e7in g\u00fcvenlik sistemi de \u00e7ok katmanl\u0131 olmal\u0131d\u0131r. Sonu\u00e7ta teoride (ve pratikte) \u00e7al\u0131\u015fanlar\u0131n \u00fc\u00e7\u00fcnc\u00fc taraf posta servisleri veya anl\u0131k iletilerle kimlik av\u0131 ba\u011flant\u0131lar\u0131 almas\u0131 m\u00fcmk\u00fcn. Bu y\u00fczden i\u015f istasyonlar\u0131n\u0131, sald\u0131rganlar\u0131n genelde kulland\u0131\u011f\u0131 uygulamalardaki k\u00f6t\u00fc ama\u00e7l\u0131 etkinli\u011fi alg\u0131lama yetene\u011fine sahip bir \u00e7\u00f6z\u00fcmle donatmak daha iyi bir y\u00f6ntem. Kaspersky Endpoint Security for Business bu amaca y\u00f6nelik \u00e7\u00f6z\u00fcm sunuyor.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kartb2b\">\n","protected":false},"excerpt":{"rendered":"<p>Blo\u011fumuza ilk defa gelmiyorsan\u0131z, kimlik av\u0131n\u0131n ne oldu\u011funu biliyor olmal\u0131s\u0131n\u0131z. Bilmiyorsan\u0131z bu yaz\u0131m\u0131z\u0131 mutlaka okuyun. K\u0131saca, kimlik av\u0131 ki\u015fisel verileri elde etmeyi ama\u00e7layan bir doland\u0131r\u0131c\u0131l\u0131k t\u00fcr\u00fcd\u00fcr: oturum a\u00e7ma, parolalar, c\u00fczdan numaralar\u0131 gibi. As\u0131l olarak da dijital sosyal m\u00fchendisliktir.<\/p>\n","protected":false},"author":40,"featured_media":4522,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1194,1727],"tags":[1481,584,1480,537],"class_list":{"0":"post-4521","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-smb","9":"tag-hedef-odakli-oltalama","10":"tag-oltalama","11":"tag-sosyall-muhendislik","12":"tag-tehditler"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/what-is-spearphishing\/4521\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/what-is-spearphishing\/11961\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/what-is-spearphishing\/9956\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/what-is-spearphishing\/14193\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/what-is-spearphishing\/12398\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/what-is-spearphishing\/14959\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/what-is-spearphishing\/14806\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/what-is-spearphishing\/19324\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/what-is-spearphishing\/20412\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/what-is-spearphishing\/9835\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/what-is-spearphishing\/9933\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/what-is-spearphishing\/8623\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/what-is-spearphishing\/15486\/"},{"hreflang":"zh","url":"https:\/\/www.kaspersky.com.cn\/blog\/what-is-spearphishing\/8995\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/what-is-spearphishing\/18949\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/what-is-spearphishing\/19174\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/what-is-spearphishing\/19170\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/hedef-odakli-oltalama\/","name":"hedef odakl\u0131 oltalama"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4521","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/40"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=4521"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4521\/revisions"}],"predecessor-version":[{"id":6993,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4521\/revisions\/6993"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/4522"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=4521"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=4521"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=4521"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}