{"id":5086,"date":"2018-07-12T11:33:11","date_gmt":"2018-07-12T08:33:11","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=5086"},"modified":"2019-11-15T14:39:46","modified_gmt":"2019-11-15T11:39:46","slug":"cryptominers-in-business","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/cryptominers-in-business\/5086\/","title":{"rendered":"Sunucunuzda kimler madencilik yap\u0131yor?"},"content":{"rendered":"<p><a href=\"https:\/\/securelist.com\/ransomware-and-malicious-crypto-miners-in-2016-2018\/86238\/\" target=\"_blank\" rel=\"noopener\">Uzmanlar\u0131m\u0131z\u0131n yapt\u0131\u011f\u0131 g\u00f6zlemlere g\u00f6re<\/a>, fidye yaz\u0131l\u0131m\u0131 d\u00fc\u015f\u00fc\u015fe ge\u00e7ti ve yerini tehdit listelerinin ba\u015f\u0131ndaki yeni bir tehdit ald\u0131: K\u00f6t\u00fc niyetli kripto para madencili\u011fi y\u00fckseli\u015fte. Madencilerle kar\u015f\u0131la\u015fan toplam kullan\u0131c\u0131 say\u0131s\u0131 2016-2017 y\u0131llar\u0131nda 1.899.236 iken 2017-2018\u2019de 2.735.611\u2019e y\u00fckseldi. G\u00fcn ge\u00e7tik\u00e7e etkinliklerini s\u0131kla\u015ft\u0131ran ve kurbanlar\u0131 i\u00e7in daha b\u00fcy\u00fck tehlikeler arz etmeye ba\u015flayan madenciler son zamanlarda hedeflerini i\u015fletmelere do\u011fru y\u00f6neltmeye ba\u015flad\u0131.<\/p>\n<p>K\u00f6t\u00fc ama\u00e7l\u0131 kripto para madencilik ve <a href=\"https:\/\/www.kaspersky.com\/blog\/mining-easy-explanation\/17768\/\" target=\"_blank\" rel=\"noopener nofollow\">yasal madencilik<\/a> aras\u0131nda bulunan tek fark; k\u00f6t\u00fc ama\u00e7l\u0131 kripto madencilik su\u00e7lular\u0131n\u0131n kendilerine ait olmayan donan\u0131mlar\u0131 kullanarak bilgisayarlara vir\u00fcs bula\u015ft\u0131rmalar\u0131 veya madencilik siteleri \u00fczerinden kurbanlar\u0131n\u0131 kand\u0131rmalar\u0131d\u0131r. Bu ak\u0131m, ev kullan\u0131c\u0131lar\u0131na y\u00f6nelik sald\u0131r\u0131larla ba\u015flad\u0131 ve ba\u015flarda \u00e7ok dikkat \u00e7ekmedi. Ancak bu kurbanlardan sa\u011flanan gelir olduk\u00e7a az oldu\u011fu i\u00e7in su\u00e7lular, daha fazla kayna\u011f\u0131 olan yeni hedefler aramaya ba\u015flad\u0131.<\/p>\n<p>Ev bilgisayar\u0131 yerine bir sunucuya vir\u00fcs bula\u015ft\u0131rman\u0131n sa\u011flayaca\u011f\u0131 potansiyel faydalar\u0131n say\u0131s\u0131 su\u00e7lular i\u00e7in olduk\u00e7a cazip. Sunucu donan\u0131m\u0131 olduk\u00e7a \u00fcretkendir ve \u00e7ok daha fazla kripto para i\u00e7in madencilik yapabilir. Sunucuya bula\u015fan vir\u00fcslerin belirginlikleri daha azd\u0131r (\u00f6zellikle de s\u00f6z konusu k\u00f6t\u00fc adamlar \u00e7ok a\u00e7g\u00f6zl\u00fc de\u011filse ve t\u00fcm mevcut bilgi i\u015flem kaynaklar\u0131n\u0131 kullanmaya \u00e7al\u0131\u015fmazsa). Sonu\u00e7 olarak; Web sunucular\u0131, m\u00fc\u015fterinin taray\u0131c\u0131lar\u0131nda madencilik komutlar\u0131 ba\u015flatan k\u00f6t\u00fc ama\u00e7l\u0131 Web madencilerine ev sahipli\u011fi yapabilir.<\/p>\n<p>Bu size tan\u0131d\u0131k geldi mi? K\u00f6t\u00fc ama\u00e7l\u0131 madenciler, daha \u00f6nce fidye yaz\u0131l\u0131mlar\u0131n\u0131n ilerledi\u011fi kariyer yolunu izliyor. \u0130lk olarak ev kullan\u0131c\u0131lar\u0131, daha sonra i\u015fletmeler. Mant\u0131ksal olarak bak\u0131ld\u0131\u011f\u0131nda bir sonraki ad\u0131m, madencileri \u015firket altyap\u0131lar\u0131na yerle\u015ftirmeyi ama\u00e7layan hedefli sald\u0131r\u0131lard\u0131r. Uzmanlar\u0131m\u0131z bu t\u00fcr sald\u0131r\u0131lar\u0131n yak\u0131n bir zamanda ger\u00e7ekle\u015fece\u011finden emin.<\/p>\n<h2>Madencilik yap\u0131yorlarm\u0131\u015f. Ne olmu\u015f yani?<\/h2>\n<p>Baz\u0131 i\u015fletmeler k\u00f6t\u00fc ama\u00e7l\u0131 madencili\u011fi k\u00fc\u00e7\u00fck bir tehdit olarak g\u00f6r\u00fcyor. Kritik bilgileri etkilemiyor hatta bazen i\u015f s\u00fcre\u00e7lerine bile etki etmiyor. Bunun temel nedeni; siber su\u00e7lular\u0131n, vir\u00fcs bula\u015ft\u0131r\u0131lan sunucular\u0131n i\u015f y\u00fck\u00fcn\u00fc dikkatli bir \u015fekilde analiz etmeleri ve yakalanmamak i\u00e7in kaynaklar\u0131n sadece bir k\u0131sm\u0131n\u0131 almalar\u0131.<\/p>\n<p>Fakat bize sorarsan\u0131z; yabanc\u0131lar\u0131n, i\u015fletmelerin elektrik g\u00fc\u00e7lerini kripto paraya d\u00f6n\u00fc\u015ft\u00fcrerek i\u015fletmelere ait kaynaklardan para kazanmalar\u0131 s\u00f6z konusu i\u015fletmeleri endi\u015felendirmeli. Bu kullan\u0131m, ekipmandaki a\u015f\u0131nmay\u0131 h\u0131zland\u0131r\u0131r ve sunucunun zaman\u0131ndan \u00f6nce ar\u0131zalanmas\u0131na neden olur. Ayr\u0131ca, sunucunuzda bir kripto madencisinin olmas\u0131, siber su\u00e7lular\u0131n savunman\u0131z\u0131 ihlal etti\u011fini ve altyap\u0131n\u0131za girdi\u011fini g\u00f6sterir. Bu su\u00e7lular gizli bilgilerinizle \u015fimdilik ilgilenmiyor olabilir ancak bu durum ileride de\u011fi\u015febilir ve ayn\u0131 su\u00e7lular verilerinizi \u00e7alarak bu i\u015ften k\u00e2r etmeyi d\u00fc\u015f\u00fcnebilir.<\/p>\n<h2>Ne yapmal\u0131s\u0131n\u0131z?<\/h2>\n<p>Ba\u015flang\u0131\u00e7 olarak, her zamanki tavsiyemizi uygulay\u0131n: E-posta eklerine veya bilmedi\u011finiz ki\u015filerin mesajlar\u0131na kar\u015f\u0131 dikkatli olun; yaz\u0131l\u0131m\u0131 g\u00fcncel tutun; k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m \u00f6nleme \u00e7\u00f6z\u00fcmleri gibi \u00e7\u00f6z\u00fcmler kullan\u0131n. Ne de olsa kripto madencileri k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlard\u0131r ve t\u0131pk\u0131 di\u011fer k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar gibi, ekleri ve g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 kullanarak yay\u0131l\u0131rlar.<\/p>\n<p>Madenci odakl\u0131 tavsiyelere g\u00f6z \u00f6n\u00fcnde bulundurun ve sunucu y\u00fck\u00fcn\u00fcz\u00fc takip edin. G\u00fcnl\u00fck y\u00fck aniden de\u011fi\u015firse bu durum, k\u00f6t\u00fc ama\u00e7l\u0131 bir madencinin belirtisi olabilir. Kurumsal a\u011f\u0131n\u0131z\u0131n d\u00fczenli g\u00fcvenlik denetimlerini yapmak da yararl\u0131 olabilir. Ayr\u0131ca kuyruk y\u00f6netim sistemleri, POS terminalleri ve sat\u0131\u015f makineleri gibi \u00e7ok fazla g\u00f6z \u00f6n\u00fcnde bulunmayan hedefleri de unutmamal\u0131s\u0131n\u0131z. Bir ordu dolusu vir\u00fcsl\u00fc cihaz, su\u00e7lulara \u00e7ok b\u00fcy\u00fck k\u00e2rlar sa\u011flayabilir.<\/p>\n<p>\u0130\u015f istasyonlar\u0131n\u0131z\u0131 ve sunucular\u0131n\u0131z\u0131 ayn\u0131 anda koruyabilen g\u00fcvenilir bir g\u00fcvenlik \u00e7\u00f6z\u00fcm\u00fc i\u00e7in, Kaspersky Endpoint Security for Business\u2019\u0131 \u00f6neririz. Bu \u00e7\u00f6z\u00fcm; k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar\u0131 tespit edebilir, k\u00f6t\u00fc ama\u00e7l\u0131 web sitelerini engelleyebilir, g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 otomatik olarak belirleyebilir ve yamalar\u0131 indirip y\u00fckleyebilir. Web a\u011f ge\u00e7itleri, e-posta sunucular\u0131, i\u015f birli\u011fi platformlar\u0131 ve daha bir\u00e7ok konuda g\u00fcvenlik sa\u011flayabilir. Denemek i\u00e7in a\u015fa\u011f\u0131daki ba\u015fl\u0131\u011fa t\u0131klay\u0131n\u0131z.<\/p>\n<p><a href=\"https:\/\/go.kaspersky.com\/Global_Trial_Advanced_SOC.html?utm_source=kdaily&amp;utm_medium=blog&amp;utm_campaign=tr_KESB-organic_organic&amp;utm_content=link&amp;utm_term=tr_kdaily_organic_link_blog_KESB-organic\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-5091 size-full\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2018\/07\/12113709\/KESB1.png\" alt=\"\" width=\"1460\" height=\"300\"><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Uzmanlar\u0131m\u0131z\u0131n yapt\u0131\u011f\u0131 g\u00f6zlemlere g\u00f6re, fidye yaz\u0131l\u0131m\u0131 d\u00fc\u015f\u00fc\u015fe ge\u00e7ti ve yerini tehdit listelerinin ba\u015f\u0131ndaki yeni bir tehdit ald\u0131: K\u00f6t\u00fc niyetli kripto para madencili\u011fi y\u00fckseli\u015fte. <\/p>\n","protected":false},"author":700,"featured_media":5087,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1194,1727],"tags":[1663,1662,1589,1339,730],"class_list":{"0":"post-5086","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-smb","9":"tag-kripto-madencilik","10":"tag-kripto-para-hirsizligi","11":"tag-madenciler","12":"tag-madencilik","13":"tag-rapor"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/cryptominers-in-business\/5086\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/cryptominers-in-business\/13612\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/cryptominers-in-business\/11378\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/cryptominers-in-business\/15675\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/cryptominers-in-business\/13910\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/cryptominers-in-business\/13117\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/cryptominers-in-business\/16411\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/cryptominers-in-business\/15892\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/cryptominers-in-business\/20873\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/cryptominers-in-business\/22964\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/cryptominers-in-business\/10692\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/cryptominers-in-business\/10476\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/cryptominers-in-business\/9359\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/cryptominers-in-business\/17152\/"},{"hreflang":"zh","url":"https:\/\/www.kaspersky.com.cn\/blog\/cryptominers-in-business\/9745\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/cryptominers-in-business\/20726\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/cryptominers-in-business\/16912\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/cryptominers-in-business\/20545\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/cryptominers-in-business\/20535\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/madenciler\/","name":"madenciler"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5086","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/700"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5086"}],"version-history":[{"count":4,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5086\/revisions"}],"predecessor-version":[{"id":6918,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5086\/revisions\/6918"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/5087"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5086"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5086"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5086"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}