{"id":4931,"date":"2018-05-21T08:53:05","date_gmt":"2018-05-21T05:53:05","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=4931"},"modified":"2019-11-15T14:41:43","modified_gmt":"2019-11-15T11:41:43","slug":"zoopark-attacks","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/zoopark-attacks\/4931\/","title":{"rendered":"Ak\u0131ll\u0131 telefonunuzun casus yaz\u0131l\u0131m cennetine d\u00f6n\u00fc\u015fmesini nas\u0131l \u00f6nleyebilirsiniz?"},"content":{"rendered":"<p>Bazen tamamen masum g\u00f6r\u00fcnen sayg\u0131n bir site bile zararl\u0131 olabilir \u2014 su\u00e7lular hassas bir nokta bulup bunu k\u00f6t\u00fcye kullanabilir. \u00d6rne\u011fin, siteyi \u015farts\u0131z sald\u0131r\u0131 y\u00f6ntemini kullanarak her ziyaret\u00e7inin siteye girer girmez otomatik olarak (ve fark\u0131nda olmayarak) bir dosya indirmesini sa\u011flar. Daha spesifik bir \u00f6rnek verecek olursak, Orta Do\u011fu\u2019da olup bitenlerle ilgilenen Android kullan\u0131c\u0131lar\u0131 b\u00fct\u00fcn bir hayvanat bah\u00e7esini (Zoopark casus yaz\u0131l\u0131m\u0131n\u0131) telefonlar\u0131na bula\u015ft\u0131rma riski ta\u015f\u0131yor.<\/p>\n<p>Kaspersky Lab bu k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131 2015 y\u0131l\u0131ndan beri takip ediyor ve bu yaz\u0131l\u0131m\u0131n o 2015\u2019ten bu yana \u00f6\u011frendi\u011fi \u00e7ok say\u0131da hileye tan\u0131k oldu. Bu Truva At\u0131\u2019n\u0131n d\u00f6rd\u00fcnc\u00fc ve son s\u00fcr\u00fcm\u00fc, telefon rehberinizden tutun \u00e7a\u011fr\u0131 kay\u0131tlar\u0131na ve klavye kullanarak girdi\u011finiz bilgilere kadar ak\u0131ll\u0131 telefonunuzdaki hemen hemen her bilgiyi \u00e7alabilir. ZooPark\u2019\u0131n toplay\u0131p kendi sahiplerine iletebildi\u011fi bilgilerin listesi \u015f\u00f6yle:<\/p>\n<ul>\n<li>\u0130leti\u015fim bilgileri<\/li>\n<li>Kullan\u0131c\u0131 hesap bilgileri<\/li>\n<li>Arama ge\u00e7mi\u015fi<\/li>\n<li>Sesli arama kay\u0131tlar\u0131<\/li>\n<li>K\u0131sa mesajlar<\/li>\n<li>Yer i\u015faretleri ve taray\u0131c\u0131 ge\u00e7mi\u015fi<\/li>\n<li>Taray\u0131c\u0131 arama ge\u00e7mi\u015fi<\/li>\n<li>Cihaz\u0131n co\u011frafi konumu<\/li>\n<li>Cihaz bilgisi<\/li>\n<li>Y\u00fckl\u00fc uygulamalar hakk\u0131ndaki bilgiler<\/li>\n<li>Bellek kart\u0131ndaki dosyalar<\/li>\n<li>Cihazda kay\u0131tl\u0131 belgeler<\/li>\n<li>Ekran klavyesi yoluyla girilen bilgiler<\/li>\n<li>Pano bilgileri<\/li>\n<li>Uygulamalarda kay\u0131tl\u0131 veriler (\u00f6rne\u011fin; Telegram, WhatsApp ve imo gibi mesajla\u015fma uygulamalar\u0131ndan veya Chrome taray\u0131c\u0131dan gelen veriler)<\/li>\n<\/ul>\n<p>Bunun yan\u0131nda; ZooPark komut verildi\u011finde ekran g\u00f6r\u00fcnt\u00fcs\u00fc alabilir, foto\u011fraf \u00e7ekebilir ve video kaydedebilir. \u00d6rne\u011fin, \u00f6n kameradan telefonun sahibinin foto\u011fraf\u0131n\u0131 \u00e7ekebilir ve komuta merkezine g\u00f6nderebilir.<\/p>\n<h2>K\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m canavarlar\u0131 ve bulunduklar\u0131 yerler<\/h2>\n<p>ZooPark Truva At\u0131 casus yaz\u0131l\u0131m\u0131 hedefli sald\u0131r\u0131larda kullan\u0131l\u0131r, yani rastgele g\u00f6nderilerek herhangi birini tuza\u011fa d\u00fc\u015f\u00fcrmek yerine belli bir kitleyi hedef al\u0131r. Dedi\u011fimiz gibi, ZooPark\u2019\u0131n ard\u0131ndaki su\u00e7lular\u0131n hedefinde belli konularla ilgilenen ki\u015filer yer al\u0131r Mesela burada konu, Orta Do\u011fu politikas\u0131d\u0131r.<\/p>\n<p>ZooPark ba\u015fl\u0131ca iki kanaldan yay\u0131l\u0131r: ge\u00e7erken yap\u0131lan indirmeler ve Telegram. \u00d6rne\u011fin, bu ikincisinde, su\u00e7lular K\u00fcrdistan ba\u011f\u0131ms\u0131zl\u0131k referandumunda oy kullanmak i\u00e7in Telegram kanal\u0131 \u00fczerinden bir uygulama teklif etmi\u015fti.<\/p>\n<p>K\u00f6t\u00fc niyetli ki\u015filer ayr\u0131ca baz\u0131 \u00fclkelerde veya \u00e7evrelerde ra\u011fbet g\u00f6ren baz\u0131 Web kaynaklar\u0131n\u0131 ele ge\u00e7irerek ziyaret\u00e7ilerin asl\u0131nda vir\u00fcsl\u00fc olup faydal\u0131 bir \u015feymi\u015f (\u00f6rne\u011fin resmi bir haber uygulamas\u0131ym\u0131\u015f) gibi g\u00f6r\u00fcnen bir uygulamay\u0131 otomatik indirmesini sa\u011flar. Son olarak, baz\u0131 hallerde k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m \u201chepsi bir arada\u201d mesajla\u015fma program\u0131 taklidi yapar. ZooPark\u2019\u0131n teknik y\u00f6nleriyle ilgili daha fazla bilgi i\u00e7in Securelist\u2019te yer alan <a href=\"https:\/\/securelist.com\/whos-who-in-the-zoo\/85394\/\" target=\"_blank\" rel=\"noopener\">g\u00f6nderiye<\/a> bak\u0131n.<\/p>\n<h2>Hayvanat bah\u00e7esi sat\u0131n almay\u0131n<\/h2>\n<p>Bu t\u00fcr tehlikeli casus yaz\u0131l\u0131mlara avlanmamak i\u00e7in sanal ya\u015fam\u0131n\u0131z\u0131 daha g\u00fcvenli hale getirecek birka\u00e7 \u00f6nemli kural\u0131 unutmay\u0131n:<\/p>\n<ul>\n<li>Uygulamalar\u0131 sadece g\u00fcvenilir kaynaklardan indirin. Hatta ve hatta, cihaz ayarlar\u0131n\u0131zdan \u00fc\u00e7\u00fcnc\u00fc \u015fah\u0131s kaynaklara ait programlar\u0131 indirme se\u00e7ene\u011fini kapat\u0131n.<\/li>\n<li>\u0130\u015fletim sisteminize ve \u00f6nemli uygulamalara ait g\u00fcncellemeleri mutlaka yap\u0131n. Yaz\u0131l\u0131mlar\u0131n g\u00fcncel s\u00fcr\u00fcmleri y\u00fckl\u00fc olursa bir\u00e7ok g\u00fcvenlik sorunu \u00e7\u00f6z\u00fclebilir.<\/li>\n<li>G\u00fcvenli olmayan ba\u011flant\u0131lar\u0131 ve uygulamalar\u0131 engellemek i\u00e7in mobil antivir\u00fcs yaz\u0131l\u0131m\u0131 kullan\u0131n. Kaspersky Internet Security for Android, ZooPark\u2019\u0131 tespit eder ve etkisiz hale getirir.<\/li>\n<\/ul>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"android-malware\">\n","protected":false},"excerpt":{"rendered":"<p>Bazen tamamen masum g\u00f6r\u00fcnen sayg\u0131n bir site bile zararl\u0131 olabilir \u2014 su\u00e7lular hassas bir nokta bulup bunu k\u00f6t\u00fcye kullanabilir. \u00d6rne\u011fin, siteyi \u015farts\u0131z sald\u0131r\u0131 y\u00f6ntemini kullanarak her ziyaret\u00e7inin siteye girer girmez otomatik olarak (ve fark\u0131nda olmayarak) bir dosya indirmesini sa\u011flar. Daha spesifik bir \u00f6rnek verecek olursak, Orta Do\u011fu&#8217;da olup bitenlerle ilgilenen Android kullan\u0131c\u0131lar\u0131 b\u00fct\u00fcn bir hayvanat bah\u00e7esini (Zoopark casus yaz\u0131l\u0131m\u0131n\u0131) telefonlar\u0131na bula\u015ft\u0131rma riski ta\u015f\u0131yor.<\/p>\n","protected":false},"author":2484,"featured_media":4932,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1287,1351],"tags":[555,105,744,769,1619,820,241],"class_list":{"0":"post-4931","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-threats","9":"tag-akilli-telefonlar","10":"tag-android","11":"tag-guvenlik","12":"tag-mobil-uygulamalar","13":"tag-politika","14":"tag-tehdit","15":"tag-trojan"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/zoopark-attacks\/4931\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/zoopark-attacks\/13308\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/zoopark-attacks\/11105\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/zoopark-attacks\/15376\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/zoopark-attacks\/13651\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/zoopark-attacks\/12962\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/zoopark-attacks\/16141\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/zoopark-attacks\/15722\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/zoopark-attacks\/20537\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/zoopark-attacks\/22389\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/zoopark-attacks\/10526\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/zoopark-attacks\/10346\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/zoopark-attacks\/16704\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/zoopark-attacks\/20364\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/zoopark-attacks\/20268\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/zoopark-attacks\/20264\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/android\/","name":"android"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4931","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2484"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=4931"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4931\/revisions"}],"predecessor-version":[{"id":6940,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/4931\/revisions\/6940"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/4932"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=4931"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=4931"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=4931"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}