{"id":4772,"date":"2018-03-08T13:43:32","date_gmt":"2018-03-08T10:43:32","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=4772"},"modified":"2022-05-05T14:27:56","modified_gmt":"2022-05-05T11:27:56","slug":"bug-bounty-boost-2018","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/bug-bounty-boost-2018\/4772\/","title":{"rendered":"\u00d6d\u00fclleri toplama zaman\u0131!"},"content":{"rendered":"

Ge\u00e7en sonbaharda K\u00fcresel \u015eeffafl\u0131k Giri\u015fimimizden bahsetmi\u015ftik <\/a>. Ayr\u0131ca bug bounty (\u00f6d\u00fcl avc\u0131l\u0131\u011f\u0131) program\u0131m\u0131z\u0131 geni\u015fletme s\u00f6z\u00fc vermi\u015ftik. \u0130\u015fte \u015fimdi tam olarak bunu yap\u0131yoruz. Bug\u00fcnden itibaren \u00fcr\u00fcnlerimizden herhangi birinde ciddi bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulan herkese 100.000 dolarl\u0131k \u00f6d\u00fcl veriyoruz.<\/p>\n

Bug bounty (\u00f6d\u00fcl avc\u0131l\u0131\u011f\u0131) program\u0131n\u0131 2016\u2019da ba\u015flatt\u0131k. Bu program, yeni BT \u00e7al\u0131\u015fanlar\u0131ndan tecr\u00fcbeli profesyonellere kadar herkesi Kaspersky Lab \u00fcr\u00fcnlerindeki hatalar\u0131 bulmaya te\u015fvik ediyor. Bug\u00fcne kadar 300 dolar ile 5.000 dolar aras\u0131nda de\u011fi\u015fen para \u00f6d\u00fclleri, g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n bulunmas\u0131 ve sayg\u0131 \u00e7er\u00e7evesinde a\u00e7\u0131klanmas\u0131 \u00fczerine veriliyor. Program sayesinde 70\u2019ten fazla hata raporu sa\u011fland\u0131 ve bu sorunlar\u0131 \u00e7ok zaman ge\u00e7meden \u00e7\u00f6zebildik.<\/p>\n

Evet, bizim \u00fcr\u00fcnlerimiz bile hatas\u0131z de\u011fil. Bunu s\u00f6ylemekten korkmuyoruz. Kimse m\u00fckemmel de\u011fildir. Bu sebeple ilk bug bounty (\u00f6d\u00fcl avc\u0131l\u0131\u011f\u0131) program\u0131 1995\u2019te ba\u015flat\u0131lm\u0131\u015ft\u0131. O zamanlar Netscape yeni taray\u0131c\u0131s\u0131n\u0131 test etmek istemi\u015fti. Bug\u00fcnlerde Google, Microsoft, Facebook, Mozilla ve bir\u00e7ok farkl\u0131 bili\u015fim \u015firketi bu t\u00fcr programlar\u0131 kullan\u0131yor.<\/p>\n

1 Mart\u2019ta ba\u015flayacak programda en b\u00fcy\u00fck \u00f6d\u00fcl\u00fc tam 20 kat artt\u0131rd\u0131k. 100.000 dolarl\u0131k b\u00fcy\u00fck \u00f6d\u00fcl; k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n, \u00fcr\u00fcn\u00fcn en y\u00fcksek ayr\u0131cal\u0131k seviyesindeki i\u015flemleri kullanan kullan\u0131c\u0131dan habersiz olarak \u00e7al\u0131\u015fmaya ba\u015flamas\u0131 ve sistemin yeniden ba\u015flat\u0131lmas\u0131na direnmesi ko\u015fuluyla \u00fcr\u00fcn veritaban\u0131 g\u00fcncelleme kanal\u0131 \u00fczerinden uzaktan kod y\u00fcr\u00fct\u00fclmesini m\u00fcmk\u00fcn k\u0131lan hatalara verilecek.<\/p>\n

Bu \u00e7ok karma\u015f\u0131k bir i\u015flem. Ama daha k\u00fc\u00e7\u00fck hatalar\u0131 bulman\u0131n da kar\u015f\u0131l\u0131\u011f\u0131 olacak. Di\u011fer t\u00fcrde uzaktan kod y\u00fcr\u00fct\u00fclmesini sa\u011flayan g\u00fcvenlik a\u00e7\u0131klar\u0131na da 5.000 ve 20.000 dolar aras\u0131nda \u00f6d\u00fcller verilecek. Yerel ayr\u0131cal\u0131k y\u00fckselmesini m\u00fcmk\u00fcn k\u0131lan ya da hassas verilerin if\u015fa edilmesine neden olan hatalara da \u00f6d\u00fcl verilecek.<\/p>\n

Sizi, iki yeni \u00fcr\u00fcn\u00fcm\u00fcz\u00fcn sa\u011flaml\u0131\u011f\u0131n\u0131 test etmeye davet ediyoruz: Kaspersky Internet Security 2019 ve Kaspersky Endpoint Security 11 (yeni gelen \u00fcr\u00fcnlerin en son beta s\u00fcr\u00fcmleri i\u00e7in ge\u00e7erlidir). Program h\u00fck\u00fcm ve ko\u015fullar\u0131na g\u00f6re, kullan\u0131c\u0131lar en son g\u00fcncellemeleri yap\u0131lm\u0131\u015f Windows 8.1 ya da Windows 10 s\u00fcr\u00fcmlerini kullan\u0131yor olmal\u0131. HackerOne platformunun web sitesindeki bug bounty program\u0131 a\u00e7\u0131klamas\u0131n\u0131<\/a> okuyarak daha fazla ayr\u0131nt\u0131ya ula\u015fabilirsiniz.<\/p>\n","protected":false},"excerpt":{"rendered":"

Ge\u00e7en sonbaharda K\u00fcresel \u015eeffafl\u0131k Giri\u015fimimizden bahsetmi\u015ftik . Ayr\u0131ca bug bounty (\u00f6d\u00fcl avc\u0131l\u0131\u011f\u0131) program\u0131m\u0131z\u0131 geni\u015fletme s\u00f6z\u00fc vermi\u015ftik. \u0130\u015fte \u015fimdi tam olarak bunu yap\u0131yoruz. Bug\u00fcnden itibaren \u00fcr\u00fcnlerimizden herhangi birinde ciddi bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulan herkese 100.000 dolarl\u0131k \u00f6d\u00fcl veriyoruz.<\/p>\n","protected":false},"author":2706,"featured_media":4773,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1287,1352],"tags":[744,1556,1311,352,1420,1407,877,551],"class_list":{"0":"post-4772","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-special-projects","9":"tag-guvenlik","10":"tag-hackerone","11":"tag-hatalar","12":"tag-kaspersky-lab","13":"tag-odul-avciligi","14":"tag-seffaflik","15":"tag-sistem-aciklari","16":"tag-urunler-2"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/bug-bounty-boost-2018\/4772\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/bug-bounty-boost-2018\/12723\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/bug-bounty-boost-2018\/10535\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/bug-bounty-boost-2018\/14845\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/bug-bounty-boost-2018\/13156\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/bug-bounty-boost-2018\/12578\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/bug-bounty-boost-2018\/15464\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/bug-bounty-boost-2018\/15141\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/bug-bounty-boost-2018\/19842\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/bug-bounty-boost-2018\/21477\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/bug-bounty-boost-2018\/10145\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/bug-bounty-boost-2018\/9039\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/bug-bounty-boost-2018\/16029\/"},{"hreflang":"zh","url":"https:\/\/www.kaspersky.com.cn\/blog\/bug-bounty-boost-2018\/9425\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/bug-bounty-boost-2018\/19825\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/bug-bounty-boost-2018\/19760\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/bug-bounty-boost-2018\/19786\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/guvenlik\/","name":"G\u00fcvenlik"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4772","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2706"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=4772"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4772\/revisions"}],"predecessor-version":[{"id":6959,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4772\/revisions\/6959"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/4773"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=4772"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=4772"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=4772"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}