{"id":5387,"date":"2018-11-06T14:09:14","date_gmt":"2018-11-06T11:09:14","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=5387"},"modified":"2019-11-15T14:36:56","modified_gmt":"2019-11-15T11:36:56","slug":"facebook-leak-browser-extensions","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/facebook-leak-browser-extensions\/5387\/","title":{"rendered":"Facebook kullan\u0131c\u0131 verilerindeki yeni s\u0131z\u0131nt\u0131 \u00f6zel mesajlar\u0131 da i\u00e7eriyor"},"content":{"rendered":"<p><a href=\"https:\/\/www.kaspersky.com.tr\/blog\/facebook-token-breach\/5287\/\" target=\"_blank\" rel=\"noopener\">Facebook\u2019un b\u00fcy\u00fck veri ihlalinin<\/a> \u00fcst\u00fcnden bir aydan biraz fazla zaman ge\u00e7mi\u015fken sosyal a\u011f\u0131n kullan\u0131c\u0131lar\u0131na k\u00f6t\u00fc bir haber daha geldi. K\u00f6t\u00fc niyetli taray\u0131c\u0131 uzant\u0131lar\u0131n\u0131 kullanan siber su\u00e7lular\u0131n on milyonlarca ki\u015fiye ait \u00f6zel mesajlar\u0131 da i\u00e7eren verileri ele ge\u00e7irdi\u011fi iddia ediliyor.<\/p>\n<h2>Ne oldu?<\/h2>\n<p><a href=\"https:\/\/www.bbc.com\/news\/technology-46065796\" target=\"_blank\" rel=\"noopener nofollow\">BBC\u2019nin yapt\u0131\u011f\u0131 ara\u015ft\u0131rmaya g\u00f6re<\/a>, \u00e7evrimi\u00e7i bir forum 120 milyon Facebook kullan\u0131c\u0131s\u0131n\u0131n ki\u015fisel verilerini profil ba\u015f\u0131na 10 sentten sat\u0131\u015fa \u00e7\u0131kard\u0131. 257.000 kullan\u0131c\u0131n\u0131n verilerini ve bu kullan\u0131c\u0131lar\u0131n yakla\u015f\u0131k \u00fc\u00e7te birinin (81.000) \u00f6zel mesajlar\u0131n\u0131 i\u00e7eren veri taban\u0131na ait k\u00fc\u00e7\u00fck bir par\u00e7a, verilerin de\u011ferini kan\u0131tlamak \u00fczere, halka a\u00e7\u0131k olarak yay\u0131nland\u0131.<\/p>\n<p>Elbette 120 milyon hesab\u0131n te\u015fhir edilme riski alt\u0131nda oldu\u011fu iddias\u0131, veri taban\u0131n\u0131n tamam\u0131na eri\u015filmeden do\u011frulanamaz. Ancak verileri kontrol eden BBC gazetecilerine g\u00f6re her \u015fey ar\u015fivin s\u0131zan k\u0131sm\u0131n\u0131n ger\u00e7ek oldu\u011funu g\u00f6steriyor.<\/p>\n<h2>Bu s\u0131z\u0131nt\u0131, bir ay \u00f6nceki Facebook s\u0131z\u0131nt\u0131s\u0131yla ba\u011flant\u0131l\u0131 m\u0131?<\/h2>\n<p>\u0130hlaller birbiriyle ba\u011flant\u0131s\u0131z gibi g\u00f6r\u00fcn\u00fcyor. <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/facebook-token-breach\/5287\/\" target=\"_blank\" rel=\"noopener\">\u00d6nceki olayda<\/a> merkezi, \u201ctoptan\u201d bir veri h\u0131rs\u0131zl\u0131\u011f\u0131 i\u00e7in Facebook\u2019un g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlan\u0131lm\u0131\u015ft\u0131. Fakat bu son olayda veriler, ma\u011fdurlar\u0131n kendi bilgisayarlar\u0131na y\u00fckledi\u011fi k\u00f6t\u00fc niyetli taray\u0131c\u0131 uzant\u0131lar\u0131 kullan\u0131larak topland\u0131. Bu, tamam\u0131yla bamba\u015fka bir durum.<\/p>\n<h2>K\u00f6t\u00fc niyetli taray\u0131c\u0131 uzant\u0131lar\u0131 m\u0131? O da nedir?<\/h2>\n<p>Uzant\u0131lar (di\u011fer ad\u0131yla eklentiler) taray\u0131c\u0131n\u0131n \u201c\u00fcst\u00fcne\u201d kurularak taray\u0131c\u0131n\u0131n i\u015flevlerini geni\u015fleten k\u00fc\u00e7\u00fck programlard\u0131r. Taray\u0131c\u0131 aray\u00fcz\u00fcn\u00fc de\u011fi\u015ftiren ara\u00e7 \u00e7ubuklar\u0131, reklam engelleyiciler vb. bu t\u00fcr programlara \u00f6rnek olarak g\u00f6sterilebilir. Bu uzant\u0131lar\u0131n olumsuz y\u00f6n\u00fc, taray\u0131c\u0131n\u0131n size g\u00f6sterdi\u011fi t\u00fcm i\u00e7eri\u011fi g\u00f6rebilmeleri ve hatta de\u011fi\u015ftirebilmeleridir. Uzant\u0131lar\u0131n \u00e7o\u011fu, bu i\u015flemi ola\u011fan i\u015fleyi\u015flerinin bir par\u00e7as\u0131 olarak ger\u00e7ekle\u015ftirir.<\/p>\n<p>Bu \u00f6zellik, uzant\u0131lara kullan\u0131c\u0131lar\u0131n \u00e7evrimi\u00e7i hareketlerini takip etme ve \u00e7e\u015fitli verilerini toplama konusunda do\u011fal bir yetenek kazand\u0131r\u0131r. Ele ald\u0131\u011f\u0131m\u0131z olay, Facebook sayfalar\u0131ndan \u00e7al\u0131nan verileri i\u00e7eriyor. Fakat prensipte bu yolla her t\u00fcrl\u00fc bilgi \u00e7al\u0131nabilir. \u00d6rne\u011fin bankac\u0131l\u0131k verileri de <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/malicious-chrome-extension\/5014\/\" target=\"_blank\" rel=\"noopener\">bu y\u00f6ntem kar\u015f\u0131s\u0131nda kesinlikle g\u00fcvende de\u011fildir<\/a>. Daha fazla ayr\u0131nt\u0131 i\u00e7in \u201c<a href=\"https:\/\/www.kaspersky.com.tr\/blog\/browser-extensions-security\/4691\/\" target=\"_blank\" rel=\"noopener\">Taray\u0131c\u0131 uzant\u0131lar\u0131na neden dikkat etmelisiniz<\/a>\u201d adl\u0131 g\u00f6nderiye bakabilirsiniz.<\/p>\n<p>Facebook\u2019taki son veri ihlalinde hangi uzant\u0131lar\u0131n kullan\u0131ld\u0131\u011f\u0131 hen\u00fcz net de\u011fil ve bu bilgi hi\u00e7bir zaman netle\u015fmeyebilir. Yani ba\u015fka verilerin de \u00e7al\u0131nm\u0131\u015f olma ihtimali var. Bunu hen\u00fcz kesin olarak bilemiyoruz.<\/p>\n<p>\u015eu anda bu olay \u00fcst\u00fcne iki genel \u00f6neride bulunabiliriz:<\/p>\n<ul>\n<li>Taray\u0131c\u0131 uzant\u0131lar\u0131n\u0131 hafife almay\u0131n ve \u00f6n\u00fcn\u00fcze gelen her uzant\u0131y\u0131 kurmay\u0131n. G\u00fcn\u00fcm\u00fczde en de\u011ferli bilgilerimizin \u00e7o\u011fu bir avu\u00e7 web sitesinde bulunuyor ve <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/browser-extensions-security\/4691\/\" target=\"_blank\" rel=\"noopener\">uzant\u0131lar\u0131n bunlara eri\u015fimi var<\/a>.<\/li>\n<li>\u00c7evrimi\u00e7i \u00f6zel yaz\u0131\u015fmalara daha temkinli yakla\u015f\u0131n. Bu yaz\u0131\u015fmalar, sand\u0131\u011f\u0131n\u0131z kadar \u00f6zel olmayabilir.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Facebook&#8217;un b\u00fcy\u00fck veri ihlalinin \u00fcst\u00fcnden bir aydan biraz fazla zaman ge\u00e7mi\u015fken sosyal a\u011f\u0131n kullan\u0131c\u0131lar\u0131na k\u00f6t\u00fc bir haber daha geldi. K\u00f6t\u00fc niyetli taray\u0131c\u0131 uzant\u0131lar\u0131n\u0131 kullanan siber su\u00e7lular\u0131n on milyonlarca ki\u015fiye ait \u00f6zel mesajlar\u0131 da i\u00e7eren verileri ele ge\u00e7irdi\u011fi iddia ediliyor.<\/p>\n","protected":false},"author":421,"featured_media":5388,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[994,1351],"tags":[16,1164,20,21,686,1749,1750,1628,848],"class_list":{"0":"post-5387","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-privacy","8":"category-threats","9":"tag-chrome","10":"tag-eklentiler","11":"tag-facebook","12":"tag-firefox","13":"tag-kisisel-veri","14":"tag-tarayicilar","15":"tag-uzantilar","16":"tag-veri-ihlali","17":"tag-veri-sizintisi"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/facebook-leak-browser-extensions\/5387\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/facebook-leak-browser-extensions\/14568\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/facebook-leak-browser-extensions\/12196\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/facebook-leak-browser-extensions\/16502\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/facebook-leak-browser-extensions\/14712\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/facebook-leak-browser-extensions\/13608\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/facebook-leak-browser-extensions\/17269\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/facebook-leak-browser-extensions\/16540\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/facebook-leak-browser-extensions\/21619\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/facebook-leak-browser-extensions\/24496\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/facebook-leak-browser-extensions\/11118\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/facebook-leak-browser-extensions\/11034\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/facebook-leak-browser-extensions\/10002\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/facebook-leak-browser-extensions\/18046\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/facebook-leak-browser-extensions\/21926\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/facebook-leak-browser-extensions\/17571\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/facebook-leak-browser-extensions\/21447\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/facebook-leak-browser-extensions\/21447\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/facebook\/","name":"Facebook"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5387","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/421"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5387"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5387\/revisions"}],"predecessor-version":[{"id":6890,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5387\/revisions\/6890"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/5388"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5387"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5387"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5387"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}