{"id":563,"date":"2010-07-11T12:56:51","date_gmt":"2010-07-11T16:56:51","guid":{"rendered":"http:\/\/www.kaspersky.com.tr\/blog\/?p=563"},"modified":"2020-02-26T18:06:45","modified_gmt":"2020-02-26T15:06:45","slug":"dikkat-yazilim-korsanlari-is-basinda","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/dikkat-yazilim-korsanlari-is-basinda\/563\/","title":{"rendered":"Dikkat yaz\u0131l\u0131m korsanlar\u0131 i\u015f ba\u015f\u0131nda"},"content":{"rendered":"<p><b>Hackerler, 2009\u2019da bu uygulamalar\u0131n a\u00e7\u0131klar\u0131ndan yararland\u0131<\/b><\/p>\n<p>D\u00fcnyan\u0131n lider g\u00fcvenlik i\u00e7erik y\u00f6netim geli\u015ftiricisi Kaspersky Lab\u2019in 2010 y\u0131l\u0131 siber tehdit \u00f6ng\u00f6r\u00fclerine g\u00f6re; yeni sald\u0131r\u0131ya a\u00e7\u0131k programlar vir\u00fcs salg\u0131nlar\u0131n\u0131n ana nedeni olmaya devam edecek. Kaspersky Lab uzmanlar\u0131na g\u00f6re, hackerlar bilgisayar\u0131n\u0131za sadece i\u015fleyi\u015f sistemindeki a\u00e7\u0131klar vas\u0131tas\u0131yla ele ge\u00e7irmiyor. 2009 y\u0131l\u0131nda siber su\u00e7lular kullan\u0131c\u0131lar\u0131n g\u00fcvenlik duvarlar\u0131n\u0131 k\u0131rmak ve dijital kaynaklar\u0131n\u0131 kullanmak i\u00e7in Adobe gibi \u015firketlerin geli\u015ftirdi\u011fi yaz\u0131l\u0131mlardaki zay\u0131f noktalar\u0131 bulup k\u0131rmaya yo\u011funla\u015ft\u0131.<\/p>\n<p>2009 y\u0131l\u0131nda hackerlar, kullan\u0131c\u0131lar\u0131n \u00f6zel ve gizli bilgilerine ula\u015fmak amac\u0131yla DoS sald\u0131r\u0131lar\u0131 (hizmeti engelleme, internet trafi\u011fini kesme eylemi) veya kendi geli\u015ftirdikleri kodlar kullanarak pop\u00fcler uygulamalar\u0131 \u00e7\u00f6kertme konusunda olduk\u00e7a ac\u0131mas\u0131zd\u0131. <a href=\"https:\/\/threatpost.com\/\" target=\"_blank\" rel=\"noopener nofollow\">https:\/\/threatpost.com\/<\/a> adresinde a\u00e7\u0131klanan 2009 y\u0131l\u0131n\u0131n en hassas uygulamalar listesinde de a\u00e7\u0131k\u00e7a g\u00f6r\u00fcld\u00fc\u011f\u00fc gibi her kullan\u0131c\u0131 siber su\u00e7lular\u0131n hedefi haline gelebilir. Bu nedenle d\u00fcnyada milyonlarca insan taraf\u0131ndan kullan\u0131lan g\u00fcvenilir uygulamalar\u0131 kullansak bile g\u00fcvenlik konular\u0131nda her zaman dikkatli olmal\u0131y\u0131z.<\/p>\n<p>\u0130\u015fte 2009\u2019un en hassas ve a\u00e7\u0131\u011f\u0131 bulunan 10 uygulama\u2028\u2028<b><span style=\"text-decoration: underline;\">1. Adobe Acrobat, Adobe Reader <\/span>\u2028\u2028<\/b>2009 y\u0131l\u0131nda Adobe uygulamalar\u0131n\u0131n zay\u0131f noktalar\u0131, siber su\u00e7lular\u0131 DoS sald\u0131r\u0131lar\u0131ya veya \u00a0\u00a0belirsiz uzant\u0131l\u0131 kodlar yerle\u015ftirmesine yol a\u00e7t\u0131. Adobat Reader 9.0, Acrobat 9.0 ve daha \u00f6nceki s\u00fcr\u00fcmlerindeki arabellek ta\u015fmas\u0131 su\u00e7lular\u0131n g\u00f6m\u00fcl\u00fc PDF dok\u00fcman\u0131 yoluyla kendi istedikleri kodu yerle\u015ftirerek uzaktan sald\u0131rmalar\u0131n\u0131 sa\u011flad\u0131. \u00a0\u2028\u2028<b><span style=\"text-decoration: underline;\">2. Adobe Flash Player <\/span><\/b>\u2028\u2028Bu uygulama, Shockwave Flash dosyas\u0131n\u0131n i\u015fleyi\u015fi s\u0131ras\u0131nda yok edilen objelerin tamamen ortadan kalkmas\u0131n\u0131 sa\u011flayam\u0131yor. Bu nedenle uzaktan sald\u0131r\u0131 d\u00fczenleyen ki\u015filer, arabellek ta\u015fmas\u0131 (Buffer-overflow) ad\u0131 alt\u0131nda istedikleri kodlar\u0131 haz\u0131rlad\u0131klar\u0131 dosyalar kanal\u0131yla \u00e7al\u0131\u015ft\u0131rabiliyorlar. Sonu\u00e7 olarak hackerlar uygulamaman\u0131n \u00e7\u00f6kmesine neden oluyor.\u2028\u2028<b><span style=\"text-decoration: underline;\">3. Adobe Shockwave<\/span><\/b>\u2028Hackerlar, bu uygulamadan istifade ederek y\u00f6nlendirilen web sayfalar\u0131 arac\u0131l\u0131\u011f\u0131yla istedikleri kodlar\u0131 \u00e7al\u0131\u015ft\u0131rarak bu uygulamay\u0131 haf\u0131za ar\u0131zas\u0131 ile \u00e7\u00f6kertirler.<\/p>\n<p>\u00a0<\/p>\n<p><b><span style=\"text-decoration: underline;\">4. Apple Quick Time<\/span><\/b><\/p>\n<p>7.6 s\u00fcr\u00fcm\u00fcnden \u00f6nce Apple QuickTime\u2019da olu\u015fan arabellek ta\u015fmas\u0131 kullan\u0131c\u0131n\u0131n sistemindeki uygulamay\u0131 sonland\u0131rmay\u0131 ama\u00e7layan siber su\u00e7lular i\u00e7in kullan\u0131\u015fl\u0131yd\u0131. Hackerlar ayr\u0131ca MP3 m\u00fczik dosyalar\u0131 kanal\u0131yla da istedikleri kodlar\u0131 \u00e7al\u0131\u015ft\u0131rabiliyorlard\u0131.<\/p>\n<p><b><span style=\"text-decoration: underline;\">5. Apple Safari <\/span><\/b>\u2028\u2028Apple?\u0131n web taray\u0131c\u0131s\u0131 da hackerlardan etkileniyordu. Asl\u0131nda, Safari\u2019nin 4.0.3\u2019ten \u00f6nceki s\u00fcr\u00fcmleri hackerlara istedikleri kodlar\u0131 \u00e7al\u0131\u015ft\u0131rma veya EXIF \u00fcstverisi bulunan g\u00f6rsel kanal\u0131yla uygulamay\u0131 \u00e7\u00f6kertme olana\u011f\u0131 sunuyordu.<\/p>\n<p><b><span style=\"text-decoration: underline;\">6. Mozzila Firefox<\/span><\/b><b>\u2028<\/b>\u20283.0.12?den \u00f6nceki Mozilla Firefox\u2019da bulunan JavaScript arama motoru da DoS sald\u0131r\u0131s\u0131 \u00a0veya olas\u0131 iste\u011fe ba\u011fl\u0131 kodlar\u0131n \u00e7al\u0131\u015ft\u0131r\u0131lmas\u0131na yol a\u00e7\u0131yordu. Firefox?un \u00f6nceki s\u00fcr\u00fcm\u00fcnde GIF formatl\u0131 g\u00f6rseller kanal\u0131yla zararl\u0131 kod yollan\u0131yordu.\u2028<b>\u2028<span style=\"text-decoration: underline;\">7. Opera Browser <\/span><\/b>\u2028\u2028Opera Browser da siber su\u00e7lular\u0131n k\u00f6t\u00fc ama\u00e7lar\u0131 i\u00e7in kulland\u0131klar\u0131 pop\u00fcler yaz\u0131l\u0131mlardan bir tanesi. 9.64 \u00f6ncesi Opera, hackerlar\u0131n istedikleri kodlar\u0131 JPEG resimler kanal\u0131yla \u00e7al\u0131\u015ft\u0131rmas\u0131na olanak sa\u011fl\u0131yordu. Bu sayede hackerler son kullan\u0131c\u0131n\u0131n sistemindeki haf\u0131zaya zarar veriyordu. \u2028\u2028<b><span style=\"text-decoration: underline;\">8. RealNetworks RealPlayer<\/span><\/b><\/p>\n<p>Milyonlarca insan\u0131n RealPlayer\u2019\u0131 yo\u011fun bir \u015fekilde kullanmas\u0131 hackerlar\u0131n bu uygulamaya yo\u011funla\u015fmas\u0131na neden oldu. RealNetworks RealPlayer 11?de bulunan DLL dosyas\u0131 iste\u011fe ba\u011fl\u0131 kodlar\u0131n internet video kay\u0131t [Internet Video Recording (IVR)] dosyas\u0131 yoluyla g\u00fcncellenmi\u015f alanda \u00e7al\u0131\u015ft\u0131r\u0131lmas\u0131na olanak sa\u011flad\u0131.<b>\u2028<span style=\"text-decoration: underline;\">9. Sun Java<\/span><\/b>\u2028\u2028Sun Java uygulamas\u0131n\u0131n bir\u00e7ok s\u00fcr\u00fcm\u00fcnde bulunan JPEG JFIF kod \u00e7\u00f6z\u00fcc\u00fclerin belirsiz zay\u0131f noktalar\u0131 hackerlerin g\u00f6rsel dosyalar yoluyla sald\u0131rmalar\u0131na olanak sa\u011flad\u0131. Bu dosya ayn\u0131 zamanda Bug Id 6862969 olarak da bilinir. Java JDK, Java JRE ve Java SDK gibi Sun Java SE bir\u00e7ok s\u00fcr\u00fcm\u00fcnde renk \u00e7\u00f6z\u00fcmlemesini do\u011fru yapamad\u0131. Sonu\u00e7 olarak siber su\u00e7lular ayarlanm\u0131\u015f resim dosyalar\u0131 ile kullan\u0131c\u0131n\u0131n sistemini ele ge\u00e7irmeyi ba\u015fard\u0131. \u2028<b>\u2028<span style=\"text-decoration: underline;\">10. Trillian <\/span><\/b>\u2028\u2028Hackerlar, Trillian gibi h\u0131zl\u0131 mesajla\u015fma uygulamalar\u0131n\u0131 \u00e7\u00f6kertmekten de geri kalmad\u0131lar. Trillian 3.1.9.0?da XML ayr\u0131\u015ft\u0131r\u0131c\u0131da bulunan arabellek ta\u015fmas\u0131 \u00a0siber su\u00e7lular\u0131n haz\u0131rlad\u0131klar\u0131 DTD dosyas\u0131 ile sald\u0131rmalar\u0131na ve kendi geli\u015ftirdikleri kodu \u00e7al\u0131\u015ft\u0131rmalar\u0131na yol a\u00e7t\u0131.<\/p>\n<p><b>\u2028<span style=\"text-decoration: underline;\">Kullan\u0131c\u0131lar i\u00e7in ipu\u00e7lar\u0131<\/span><\/b><\/p>\n<p>K\u00f6t\u00fc niyetleri ile sisteminizi ele ge\u00e7irmeye \u00e7al\u0131\u015fan insanlar oldu\u011fu s\u00fcrece kullan\u0131c\u0131lar\u0131n en g\u00f6zde uygulamalar\u0131 her zaman bir hedefte olacak. Bu durum, kullan\u0131c\u0131n\u0131n sald\u0131r\u0131 korkusuyla uygulamay\u0131 silmesi gerekti\u011fi anlam\u0131na gelmiyor. Kullan\u0131c\u0131 yaln\u0131zca , vir\u00fcslerden etkilenme olas\u0131l\u0131\u011f\u0131n\u0131 en aza indirmek veya hackerlar\u0131n dijital varl\u0131klar\u0131na ula\u015fmas\u0131n\u0131 engellemek i\u00e7in uygulamas\u0131n\u0131 her zaman g\u00fcncel tutmas\u0131 gerekiyor. E\u011fer uygulaman\u0131n ayarlar\u0131 kullan\u0131c\u0131 taraf\u0131ndan do\u011fru kurulduysa, bilgisayar\u0131n\u0131z bu \u2018yamalar\u0131\u2019 otomatik olarak internetten y\u00fckleyebiliyor.\u2028\u2028Her durumda, kullan\u0131c\u0131lar\u0131n, hackerlar\u0131n k\u00f6t\u00fc ama\u00e7lar\u0131ndan korunmak i\u00e7in g\u00fcncellenmi\u015f bir antivir\u00fcs yaz\u0131l\u0131m\u0131na ihtiya\u00e7lar\u0131 vard\u0131r. \u00a0Kaspersky Internet Security 2010\u2019un geli\u015ftirdi\u011fi son teknoloji kum havuzu (Sandbox) sa\u011flad\u0131\u011f\u0131 sanal g\u00fcvenli ortam \u00f6zelli\u011finden dolay\u0131 \u00a0sisteminde a\u00e7\u0131klar olu\u015fmas\u0131n\u0131 engelliyor. Kimse y\u00fczd 100 g\u00fcvende olamaz ancak kullan\u0131c\u0131 kulland\u0131\u011f\u0131 uygulamalar hakk\u0131nda bilin\u00e7li olursa ve nas\u0131l ka\u00e7\u0131naca\u011f\u0131n\u0131n fark\u0131nda olursa dijital d\u00fcnyan\u0131n tuzaklar\u0131ndan en az seviyede etkilenecektir.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hackerler, 2009\u2019da bu uygulamalar\u0131n a\u00e7\u0131klar\u0131ndan yararland\u0131 D\u00fcnyan\u0131n lider g\u00fcvenlik i\u00e7erik y\u00f6netim geli\u015ftiricisi Kaspersky Lab\u2019in 2010 y\u0131l\u0131 siber tehdit \u00f6ng\u00f6r\u00fclerine g\u00f6re; yeni sald\u0131r\u0131ya a\u00e7\u0131k programlar vir\u00fcs salg\u0131nlar\u0131n\u0131n ana nedeni olmaya devam<\/p>\n","protected":false},"author":32,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1351],"tags":[],"class_list":{"0":"post-563","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-threats"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/dikkat-yazilim-korsanlari-is-basinda\/563\/"}],"acf":[],"banners":"","maintag":[],"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/563","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=563"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/563\/revisions"}],"predecessor-version":[{"id":7718,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/563\/revisions\/7718"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=563"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=563"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=563"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}