{"id":5287,"date":"2018-09-29T01:21:22","date_gmt":"2018-09-28T22:21:22","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=5287"},"modified":"2019-11-15T14:37:37","modified_gmt":"2019-11-15T11:37:37","slug":"facebook-token-breach","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/facebook-token-breach\/5287\/","title":{"rendered":"Son Facebook g\u00fcvenlik ihlali hakk\u0131nda neler bilmeniz gerekiyor?"},"content":{"rendered":"<h2>Son ya\u015fanan Facebook g\u00fcvenlik ihlali hakk\u0131nda ne bilmen gerekiyor:<\/h2>\n<ul>\n<li>Hi\u00e7bir \u015fey<\/li>\n<\/ul>\n<h2>G\u00fcvenlik s\u0131z\u0131nt\u0131s\u0131 sebebiyle ne yapmak ZORUNDA DE\u011e\u0130LS\u0130N\u0130Z<\/h2>\n<ul>\n<li><strong>Parolan\u0131z\u0131 de\u011fi\u015ftirmek i\u00e7in acele etmeyin<\/strong>. Parolalar\u0131n\u0131z etkilenmedi, gayet g\u00fcvendeler. De\u011fi\u015ftirmek zorunda de\u011filsiniz.<\/li>\n<li><strong>Panik yapmay\u0131n<\/strong>. E\u011fer siz de bir sebeple Facebook hesab\u0131n\u0131zdan \u00e7\u0131k\u0131\u015f yapt\u0131ysan\u0131z, bunun anlam\u0131 Facebook sizin de b\u00fcy\u00fck ihtimalle tehdit ald\u0131nda oldu\u011funuzu d\u00fc\u015f\u00fcnd\u00fc ve do\u011frulama \u015fifresini s\u0131f\u0131rlad\u0131. Yani bu y\u00f6ntemle hesab\u0131n\u0131za siz hari\u00e7 kimsenin giremeyecek olmas\u0131n\u0131 garantiledi. Tek yapman\u0131z gereken yeniden giri\u015f yapmak ve e\u011fer aktifse iki a\u015famal\u0131 do\u011frulama kodunu girmek, hepsi bu kadar.<\/li>\n<li><strong>Facebook hesab\u0131n\u0131z\u0131 silmeyin.<\/strong> Elbette istedi\u011finiz zaman silebilirsiniz ancak bu sebeple silmenize gerek yok.<\/li>\n<\/ul>\n<h2>Tam olarak neler ya\u015fand\u0131<\/h2>\n<p>28 Eyl\u00fcl g\u00fcn\u00fc, Facebook bir g\u00fcvenlik g\u00fcncellemesi payla\u015farak \u015firketin m\u00fchendislik ekibinin neredeyse 50 milyon kullan\u0131c\u0131n\u0131n etkilendi\u011fi bir g\u00fcvenlik sorunu ke\u015ffetti\u011fini duyurdu. G\u00fcvenlik sorunu \u015fu anlama geliyor, biri (veya birileri) karma\u015f\u0131k bir sald\u0131r\u0131 d\u00fczenleyerek 50 milyon kullan\u0131c\u0131n\u0131n eri\u015fim anahtar\u0131n\u0131 \u00e7ald\u0131.<\/p>\n<p>Eri\u015fim anahtar\u0131n\u0131 Facebook\u2019un a\u00e7\u0131klad\u0131\u011f\u0131 gibi a\u00e7\u0131klamak gerekirse, k\u0131saca hesab\u0131n\u0131z i\u00e7in bir anahtar diyebiliriz. E\u011fer bir kullan\u0131c\u0131 buna sahipse, Facebook bu kullan\u0131c\u0131n\u0131n sizin hesab\u0131n\u0131za girmeye yetkisi oldu\u011funu d\u00fc\u015f\u00fcnerek tekrar mail adresi, parola veya iki a\u015famal\u0131 do\u011frulama kodru sormaz. Yani 50,000,000 eri\u015fim anahtar\u0131na sahip olmak demek, bu i\u015fin arkas\u0131ndaki ki\u015filerin potansiyel olarak 50,000,000 hesaba eri\u015febilece\u011fi anlam\u0131na geliyor. Ancak bu sizin parolan\u0131za sahip olduklar\u0131 veya bir \u015fekilde iki a\u015famal\u0131 do\u011frulamay\u0131 a\u015ft\u0131klar\u0131 anlam\u0131na gelmez. Parolan\u0131z g\u00fcvende ve iki a\u015famal\u0131 do\u011frulama hala istendi\u011fi gibi \u00e7al\u0131\u015f\u0131yor. Ancak eri\u015fim anahtar\u0131n\u0131 \u00e7almak, g\u00fcvenlik sistemlerini a\u015fman\u0131n yoludur.<\/p>\n<p>Facebook ya\u015fanan bu ihlalin ara\u015ft\u0131rmas\u0131n\u0131n daha \u00e7ok erken safhalar\u0131nda oldu\u011funu belirtiyor ve \u015fimdilik birisinin \u201cba\u015fkas\u0131n\u0131n g\u00f6z\u00fcnden g\u00f6r\u201d \u00f6zelli\u011finde bir a\u00e7\u0131k bulmu\u015f olabilece\u011fini d\u00fc\u015f\u00fcn\u00fcyorlar. Bu y\u00fczden bu \u00f6zelli\u011fi kullan\u0131ma kapat\u0131p 50 milyon kullan\u0131c\u0131n\u0131n eri\u015fim anahtarlar\u0131n\u0131 s\u0131f\u0131rlad\u0131lar, ge\u00e7ti\u011fimiz y\u0131l bu \u00f6zelli\u011fi kullanm\u0131\u015f 40 milyon kullan\u0131c\u0131n\u0131n da eri\u015fim anahtarlar\u0131n\u0131 s\u0131f\u0131rlan\u0131yor. Ge\u00e7ti\u011fimiz y\u0131l kullananlar\u0131n da eri\u015fim anahtarlar\u0131n\u0131 s\u0131f\u0131rlayacak olmalar\u0131 tedbir gibi g\u00f6z\u00fck\u00fcyor.<\/p>\n<p>E\u011fer eri\u015fim anahtar\u0131 s\u0131f\u0131rlanm\u0131\u015fsa, bu anahtara sahip kullan\u0131c\u0131, kullan\u0131lmas\u0131 i\u00e7in olu\u015fturulmu\u015f hesaba tekrar giri\u015f yapmak zorundad\u0131r. Su\u00e7lular\u0131n elinde mail adresleriniz ve parolalar\u0131n\u0131z olmad\u0131\u011f\u0131n\u0131 da hesaba katarsak, sizin gibi davran\u0131p hesaplar\u0131n\u0131za giri\u015f yapamayacaklar (etkilenen hesaplardan olsan\u0131z bile).<\/p>\n<p>Facebook tam olarak neler oldu\u011funu anlad\u0131klar\u0131na ve hesaplardan herhangi birinin k\u00f6t\u00fc ama\u00e7la kullan\u0131l\u0131p kullan\u0131lmad\u0131\u011f\u0131 hakk\u0131nda geli\u015fme oldu\u011funda <a href=\"https:\/\/newsroom.fb.com\/news\/2018\/09\/security-update\/\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">yaz\u0131lar\u0131n\u0131 g\u00fcncelleyeceklerini<\/a> belirtiyorlar ancak bizden \u015fimdilik yaz\u0131n\u0131n ba\u015f\u0131ndaki \u00f6neriyi yapmam\u0131z\u0131, yani hi\u00e7bir \u015fey yapmamam\u0131z\u0131 \u00f6neriyorlar. Ger\u00e7ekten \u015fu an yap\u0131labilecek hi\u00e7bir \u015fey yok, panik olmay\u0131n. Olay biraz daha ayd\u0131nlan\u0131nca, daha fazla detay ile buraca olaca\u011f\u0131z ve ger\u00e7ekten bir \u015feyler yap\u0131p yapmaman\u0131z gerekti\u011fi konusunda tekrar bilgilendirece\u011fiz.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>28 Eyl\u00fcl g\u00fcn\u00fc, Facebook bir g\u00fcvenlik g\u00fcncellemesi payla\u015farak \u015firketin m\u00fchendislik ekibinin neredeyse 50 milyon kullan\u0131c\u0131n\u0131n etkilendi\u011fi bir g\u00fcvenlik sorunu ke\u015ffetti\u011fini duyurdu.<\/p>\n","protected":false},"author":675,"featured_media":5288,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[994,1287,1351],"tags":[1134,20,559,1731,848],"class_list":{"0":"post-5287","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-privacy","8":"category-news","9":"category-threats","10":"tag-anahtar","11":"tag-facebook","12":"tag-haberler-2","13":"tag-token","14":"tag-veri-sizintisi"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/facebook-token-breach\/5287\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/facebook-token-breach\/14398\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/facebook-token-breach\/12037\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/facebook-token-breach\/16331\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/facebook-token-breach\/14523\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/facebook-token-breach\/13493\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/facebook-token-breach\/17083\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/facebook-token-breach\/16374\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/facebook-token-breach\/21429\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/facebook-token-breach\/24052\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/facebook-token-breach\/9777\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/facebook-token-breach\/17819\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/facebook-token-breach\/21712\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/facebook-token-breach\/21277\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/facebook-token-breach\/21284\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/facebook\/","name":"Facebook"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5287","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/675"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5287"}],"version-history":[{"count":4,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5287\/revisions"}],"predecessor-version":[{"id":6899,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5287\/revisions\/6899"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/5288"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5287"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5287"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5287"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}