{"id":7887,"date":"2020-03-11T13:40:27","date_gmt":"2020-03-11T10:40:27","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=7887"},"modified":"2020-03-11T13:40:27","modified_gmt":"2020-03-11T10:40:27","slug":"rsa2020-security-awareness-nypd","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/rsa2020-security-awareness-nypd\/7887\/","title":{"rendered":"New York Polis Departman\u0131 size g\u00fcvenlik hakk\u0131nda ne \u00f6\u011fretebilir?"},"content":{"rendered":"<p>2020 RSA Konferans\u0131\u2019ndaki oturumlar\u0131 incelerken, <a href=\"https:\/\/www.rsaconference.com\/usa\/us-2020\/agenda\/tackling-cyber-enabled-crime-at-scale-moving-enforcement-forward\" target=\"_blank\" rel=\"noopener nofollow\">\u00d6l\u00e7e\u011fe g\u00f6re siber etkin su\u00e7larla m\u00fccadele: Kolluk kuvvetlerini ileri ta\u015f\u0131mak<\/a> adl\u0131 bir konu\u015fma g\u00f6z\u00fcme \u00e7arpt\u0131. <em>Law &amp; Order<\/em> dizisinin sad\u0131k bir takip\u00e7isi ve siber g\u00fcvenlik i\u015finde biri olarak, k\u00f6t\u00fc bir hacker\u2019\u0131 konu alan, fakat New York Polis Departman\u0131\u2019nda (NYPD) ge\u00e7en bir televizyon dizisi canland\u0131 g\u00f6z\u00fcmde.<\/p>\n<p>Konu\u015fmac\u0131 <a href=\"https:\/\/twitter.com\/fuzztech\" target=\"_blank\" rel=\"noopener nofollow\">Nick Selby<\/a>\u2018nin anlatacak harika bir hikayesi vard\u0131. New York City\u2019nin siber su\u00e7larla ilgili sorunu \u00e7ok b\u00fcy\u00fck; tam dokuz haneli bir sorun. Selby, dijital d\u00fcnyaya do\u011fanlardan boomer jenerasyonuna kadar herkesin, siber su\u00e7lulara, telefon doland\u0131r\u0131c\u0131lar\u0131na, fidye yaz\u0131l\u0131mlar\u0131na, para transferine ihtiya\u00e7 duyan bir Nijeryal\u0131 amcaya ve \u00e7ok daha fazlas\u0131na kurban d\u00fc\u015ft\u00fc\u011f\u00fcn\u00fc anlatt\u0131.<\/p>\n<p>Bu kurbanlar \u00e7o\u011funlukla NYPD\u2019yi ar\u0131yordu. Ne var ki, bu tarz aramalara cevap veren memurlar Bitcoin gibi teknik kelimeleri duyduklar\u0131nda hi\u00e7bir \u015fey anlam\u0131yordu, \u00e7\u00fcnk\u00fc bunlar <em>siber<\/em> terimlerdi. Polis memurlar\u0131n\u0131n ve dedektiflerin zihinsel haritalar\u0131nda siber, di\u011fer baz\u0131 kurumlar\u0131n ele ald\u0131\u011f\u0131 bir \u015feydi. Kurbanlara FBI\u2019a ba\u015fvurmay\u0131 tavsiye etmekten ba\u015fka yapabildikleri bir \u015fey yoktu.<\/p>\n<p>New York b\u00fcy\u00fckl\u00fc\u011f\u00fcnde bir \u015fehir i\u00e7in bu bir sorundu. Selby bunun fak\u0131ndayd\u0131; Selby\u2019yi NYPD\u2019deki k\u00fclt\u00fcr\u00fc de\u011fi\u015ftirmek ve memurlar\u0131 siber g\u00fcvenlik konusunda e\u011fitmek \u00fczere g\u00f6revlendiren \u00fcst d\u00fczey y\u00f6neticileri de fark\u0131ndayd\u0131.<\/p>\n<p>Sunumun tamam\u0131 \u00e7ok ilgi \u00e7ekiciydi; ekibin siber su\u00e7lar\u0131 durdurmak ve insanlar\u0131n zorluklarla kazand\u0131\u011f\u0131 paralar\u0131n\u0131 geri almalar\u0131na yard\u0131mc\u0131 olmak i\u00e7in yapt\u0131\u011f\u0131 t\u00fcm harika \u015feyler konu\u015fuldu. Ben b\u00fct\u00fcn hikayeyi burada tekrar anlatmayaca\u011f\u0131m, ama konu\u015fman\u0131n tamam\u0131n\u0131 a\u015fa\u011f\u0131daki ba\u011flant\u0131dan izlemenizi \u015fiddetle tavsiye ediyorum:<\/p>\n<p><span class=\"embed-youtube\" style=\"text-align:center; display: block;\"><iframe class=\"youtube-player\" type=\"text\/html\" width=\"640\" height=\"390\" src=\"https:\/\/www.youtube.com\/embed\/-_F8QdyKkeQ?version=3&amp;rel=1&amp;fs=1&amp;showsearch=0&amp;showinfo=1&amp;iv_load_policy=1&amp;wmode=transparent\" frameborder=\"0\" allowfullscreen=\"true\"><\/iframe><\/span><\/p>\n<p>Bununla birlikte, sunumda beni etkileyen en \u00f6nemli \u015fey \u015fuydu: <em>Selby\u2019nin k\u00fclt\u00fcr\u00fc de\u011fi\u015ftirmesi ve polis memurlar\u0131n\u0131 siber g\u00fcvenli\u011fi \u00f6nemseyecek \u015fekilde e\u011fitimden ge\u00e7irmesi gerekmi\u015fti.<\/em><\/p>\n<p>G\u00fcvenlik e\u011fitimine \u00f6nayak olan herkes muhtemelen a\u015fa\u011f\u0131daki gibi rahats\u0131z edici sorular veya yorumlar alm\u0131\u015ft\u0131r:<\/p>\n<p>Finansta \u00e7al\u0131\u015f\u0131yorum, siber g\u00fcvenlikten bana ne?<br>\n\u00d6n b\u00fcroda \u00e7al\u0131\u015f\u0131yorum, bana ne?<br>\nHizmet masas\u0131nday\u0131m, g\u00fcvenli\u011fin ne oldu\u011funu biliyorum!<\/p>\n<p>En sevdi\u011fim ofis i\u00e7i s\u0131zlanma ise \u015fu:<\/p>\n<p>\u00d6f, g\u00fcvenlik e\u011fitimi mi, Y\u0130NE M\u0130?<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kesb-trial-leadgen\">\n<p>Hepimiz benzer \u015feyler ya\u015fad\u0131k ve yapt\u0131\u011f\u0131m\u0131z i\u015f i\u00e7in gerekli olmad\u0131\u011f\u0131n\u0131 d\u00fc\u015f\u00fcnd\u00fc\u011f\u00fcm\u00fcz bir \u015feyler yapmak zorunda kald\u0131k. Ancak buradaki sorun, siber g\u00fcvenli\u011fin her \u015feyle ilgili olmas\u0131. Cidden. Ortalama i\u015f yerinden sadece birka\u00e7 \u00f6rnek verece\u011fim:<\/p>\n<ul>\n<li><strong>Finans<\/strong>: Paray\u0131 y\u00f6netiyorlar. <a href=\"https:\/\/www.kaspersky.com\/blog\/boca-juniors-case\/27107\/\" target=\"_blank\" rel=\"noopener nofollow\">Yanl\u0131\u015f hesaba para g\u00f6nderilmesiniyle<\/a> ilgili ka\u00e7 doland\u0131r\u0131c\u0131l\u0131ktan bahsettik?<\/li>\n<li><strong>Resepsiyon<\/strong>: G\u00f6rd\u00fc\u011f\u00fcn\u00fcz ilk y\u00fcz; herkesin binaya girmesine izin veren ki\u015fi. Resepsiyon g\u00f6revlileri ayr\u0131ca \u00e7o\u011funlukla konuklara Wi-Fi kimlik bilgilerini de verir. <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/dark-vishnya-attack\/5483\/\" target=\"_blank\" rel=\"noopener\">Kurumsal a\u011flara k\u00f6t\u00fc ama\u00e7l\u0131 donan\u0131mlar ba\u011flayan doland\u0131r\u0131c\u0131lar gibi ki\u015filerden korunmada resepsiyon masas\u0131n\u0131n rol\u00fcn\u00fc d\u00fc\u015f\u00fcn\u00fcn<\/a>.<\/li>\n<li><strong>Servis masas\u0131<\/strong>: Bilgisayarlar\u0131 onar\u0131yor, ayg\u0131tlar\u0131 y\u00f6netiyorlar. Bir PowerPoint dosyas\u0131n\u0131 bir bilgisayardan di\u011ferine aktarman\u0131z gerekti\u011finde size kim <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/usb-in-mail\/2466\/\" target=\"_blank\" rel=\"noopener\">USB bellek<\/a> veriyor? BT olmad\u0131\u011f\u0131nda, insanlar ofiste <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/weaponized-usb-devices\/5892\/\" target=\"_blank\" rel=\"noopener\">ba\u015f\u0131bo\u015f bulduklar\u0131 s\u00fcr\u00fcc\u00fcleri kullanabilirler<\/a>.<\/li>\n<\/ul>\n<p>Ne demeye \u00e7al\u0131\u015ft\u0131\u011f\u0131m\u0131 anl\u0131yorsunuz, de\u011fil mi? T\u00fcm \u00e7al\u0131\u015fanlar teknik olarak sald\u0131r\u0131 vekt\u00f6rleridir; sadece genellikle yukar\u0131da bahsetti\u011fim \u00e7izgide d\u00fc\u015f\u00fcnmezler.<\/p>\n<h2>NYPD\u2019den ne \u00f6\u011frenebiliriz?<\/h2>\n<p>Kurumsal siber g\u00fcvenlik e\u011fitmenlerinin aksine, NYPD polis memurlar\u0131n\u0131 e\u011fitiyordu; bununla birlikte g\u00f6revleri ve kar\u015f\u0131la\u015ft\u0131klar\u0131 zorluklar kurumsal siber g\u00fcvenlikle benzerdi. Dolay\u0131s\u0131yla temel ilkeleri de \u00f6yle:<\/p>\n<ul>\n<li><strong>Basit tutun.<\/strong> Belki de NYPD ekibinin ba\u015far\u0131s\u0131ndaki en b\u00fcy\u00fck fakt\u00f6r, e\u011fitimi a\u00e7\u0131k ve net tutmalar\u0131yd\u0131. E\u011fitim seanslar\u0131ndaki slayt say\u0131s\u0131n\u0131 20\u2019den az tuttuklar\u0131n\u0131 san\u0131yorum. Personeliniz i\u00e7in e\u011fitim materyalleri planlarken, bu materyallerin kursiyerlere bu konuyu neden \u00f6nemsemeleri gerekti\u011fini ve nas\u0131l ba\u015far\u0131l\u0131 olacaklar\u0131n\u0131 g\u00f6steren a\u00e7\u0131k hedefler i\u00e7erdi\u011finden emin olun.<\/li>\n<li><strong>\u0130nsanlar\u0131 g\u00fc\u00e7lendirin.<\/strong> Selby ve ekibinin kulland\u0131\u011f\u0131 bir ba\u015fka haval\u0131 yakla\u015f\u0131m ise, polislerin siber su\u00e7lularla m\u00fccadele edebilmelerine ve uygun ara\u015ft\u0131rmalar\u0131 yapabilmelerine yard\u0131mc\u0131 olacak bir uygulama sunmakt\u0131. \u015eirketiniz i\u00e7in bir uygulama yaratman\u0131z gerekti\u011fini s\u00f6ylemiyorum. Bunun yerine, \u00e7al\u0131\u015fanlar\u0131n\u0131z\u0131n e\u011fitimi uygulamaya koyabilmesini sa\u011flayacak yollar bulun. \u015e\u00fcpheli bir \u015fey g\u00f6r\u00fcrlerse bunu nas\u0131l rapor edecekler? Kimlik av\u0131 e-postas\u0131 al\u0131rlarsa bu e-postay\u0131 t\u00fcm \u015firket i\u00e7in nas\u0131l engelleyebilirler veya nereye g\u00f6ndermeliler?<\/li>\n<li><strong>Sonu\u00e7lar\u0131 g\u00f6sterin.<\/strong> NYPD \u00f6l\u00e7ebildi\u011fi her \u015feyi \u00f6l\u00e7er. Departman, bu \u201csiberi\u201d de \u00f6l\u00e7meye ba\u015flad\u0131. B\u00f6ylece polisler, \u00e7al\u0131\u015fmalar\u0131n\u0131n b\u00f6lgelerinde daha fazla su\u00e7un soru\u015fturulmas\u0131na yard\u0131mc\u0131 oldu\u011funu g\u00f6rebildiler. Ayr\u0131ca sorunun ne kadar b\u00fcy\u00fck oldu\u011funu ve siber su\u00e7larla m\u00fccadelede rollerinin ne kadar yard\u0131mc\u0131 oldu\u011funu da g\u00f6rd\u00fcler. \u00c7al\u0131\u015fanlar\u0131n\u0131z su\u00e7lularla sava\u015fm\u0131yor olabilir, ancak onlara fark\u0131ndal\u0131klar\u0131n\u0131n ger\u00e7ekten neleri daha iyi hale getirdi\u011fini g\u00f6sterebilirsiniz. \u00d6rne\u011fin, dokuz fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131s\u0131n\u0131n \u00f6n\u00fcne ge\u00e7ildi\u011fini veya y\u0131lda 200 kimlik av\u0131 e-postas\u0131n\u0131n engellendi\u011fini d\u00fczenli g\u00fcncellemelerle payla\u015fmak iyi bir fikir olabilir.<\/li>\n<\/ul>\n<p>E\u011fitiminizin y\u00fcksek teknoloji i\u00e7ermesi veya pahal\u0131 olmas\u0131 gerekmez. Kurum i\u00e7i uzmanl\u0131\u011f\u0131n\u0131z\u0131 payla\u015fmak bile kurulu\u015funuzda b\u00fcy\u00fck de\u011fi\u015fikliklere yol a\u00e7abilir.<\/p>\n<p>Bir siber g\u00fcvenlik e\u011fitim plan\u0131 haz\u0131rlamak, bu y\u0131l i\u015fletmeniz i\u00e7in planlad\u0131\u011f\u0131n\u0131z \u015feylerden biri olmasa bile, biz sizin yerinize her \u015feyi d\u00fc\u015f\u00fcnd\u00fck. Kaspersky, \u00e7al\u0131\u015fanlar\u0131n\u0131z\u0131 siber g\u00fcvenlik hakk\u0131nda bilin\u00e7lendirmeye ba\u015flamak i\u00e7in \u00e7al\u0131\u015fanlar\u0131n\u0131zla payla\u015fabilece\u011finiz <a href=\"https:\/\/education.kaspersky.com\/en?utm_source=kdaily&amp;utm_medium=blog&amp;utm_campaign=tr_kdaily_mh0090&amp;utm_content=sm-post&amp;utm_term=tr_kdaily__mh0090_sm-post_blog_kdaily\" target=\"_blank\" rel=\"noopener nofollow\">\u00fccretsiz bir g\u00fcvenlik e\u011fitimi dersi<\/a> sunuyor.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kesb-b2b\">\n","protected":false},"excerpt":{"rendered":"<p>2020 RSA Konferans\u0131&#8217;nda, NYPD&#8217;nin eski Siber \u0130stihbarat ve Soru\u015fturmalar direkt\u00f6r\u00fc, polisin siber g\u00fcvenlik bilincini nas\u0131l artt\u0131rd\u0131\u011f\u0131n\u0131 anlatt\u0131.<\/p>\n","protected":false},"author":636,"featured_media":7888,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1726,1194,1727],"tags":[1270,1376,2140,1543,1876,2136,815,2088],"class_list":{"0":"post-7887","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-enterprise","8":"category-business","9":"category-smb","10":"tag-egitim","11":"tag-farkindalik","12":"tag-guvenlik-bilinci","13":"tag-polis","14":"tag-rsa-konferansi","15":"tag-rsa2020","16":"tag-rsac","17":"tag-siber-guvenlik-bilinci"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/rsa2020-security-awareness-nypd\/7887\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/rsa2020-security-awareness-nypd\/16088\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/rsa2020-security-awareness-nypd\/7845\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/rsa2020-security-awareness-nypd\/21119\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/rsa2020-security-awareness-nypd\/17884\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/rsa2020-security-awareness-nypd\/22044\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/rsa2020-security-awareness-nypd\/20824\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/rsa2020-security-awareness-nypd\/27634\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/rsa2020-security-awareness-nypd\/33960\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/rsa2020-security-awareness-nypd\/14537\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/rsa2020-security-awareness-nypd\/13143\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/rsa2020-security-awareness-nypd\/23253\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/rsa2020-security-awareness-nypd\/27831\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/rsa2020-security-awareness-nypd\/25090\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/rsa2020-security-awareness-nypd\/21843\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/siber-guvenlik-bilinci\/","name":"siber g\u00fcvenlik bilinci"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/7887","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/636"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=7887"}],"version-history":[{"count":1,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/7887\/revisions"}],"predecessor-version":[{"id":7889,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/7887\/revisions\/7889"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/7888"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=7887"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=7887"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=7887"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}