![\"\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2021\/05\/07160645\/office-365-phishing-via-gdocs-letter-1024x534.jpg\")
Google Docs ba\u011flant\u0131s\u0131n\u0131n yer ald\u0131\u011f\u0131 kimlik av\u0131 e-postas\u0131<\/p><\/div>\n
\u00a0<\/p>\n
Bilinmeyen bir g\u00f6ndericiden gelen a\u00e7\u0131k olmayan e-posta, bir para yat\u0131rma i\u015flemiyle ilgilidir ve \u201cPara Yat\u0131rma \u00d6nerisi\u201d ile ilgili bir ba\u011flant\u0131 i\u00e7erir. E-postada, al\u0131c\u0131dan para yat\u0131rma y\u00f6ntemini kontrol etmesi veya tutar\u0131 onaylamas\u0131 istenir. G\u00fcvenlik sistemleri art\u0131k e-posta kullan\u0131c\u0131lar\u0131n\u0131 \u015firket d\u0131\u015f\u0131ndan gelen e-postalar hakk\u0131nda uyar\u0131yor olsa da, bahsi ge\u00e7en \u201cdosyaya giden\u201d ba\u011flant\u0131, bir kimlik av\u0131 sitesine de\u011fil, yasal bir Google online servisine ait oldu\u011fu i\u00e7in bu g\u00fcvenlik \u00f6nlemlerini a\u015fabiliyor.<\/p>\n
Kimlik av\u0131 sitesi<\/h2>\n
Ba\u011flant\u0131, kurumsal OneDrive servisi sayfas\u0131 gibi g\u00f6r\u00fcnen bir siteye gidiyor. Kullan\u0131c\u0131lar, belgenin \u015firkette herhangi bir kullan\u0131c\u0131n\u0131n kullan\u0131m\u0131na a\u00e7\u0131k olup olmad\u0131\u011f\u0131n\u0131 bile g\u00f6rebiliyor. B\u00fcy\u00fck ihtimal bu ba\u011flant\u0131y\u0131 birinin \u015firketin muhasebecisine de g\u00f6ndermeleri umuduyla bunu yap\u0131yorlar.<\/p>\n
![\"\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2021\/05\/07160710\/office-365-phishing-via-gdocs-onedrive.jpg\")
OneDrive\u2019\u0131n aray\u00fcz\u00fcne \u00e7ok benzeyen bir Google Docs sunumu<\/p><\/div>\n
\u00a0<\/p>\n
Ancak kullan\u0131c\u0131lar\u0131n g\u00f6rd\u00fc\u011f\u00fc ekran ger\u00e7ek bir internet sayfas\u0131 de\u011fil; otomatik olarak G\u00f6r\u00fcn\u00fcm modunda a\u00e7\u0131lan bir Google Docs sunumundaki bir slaytt\u0131r. Slaytta yer alan A\u00e7 d\u00fc\u011fmesine her t\u00fcrl\u00fc ba\u011flant\u0131 gizlenmi\u015f olabilir. Bu \u00f6rnekte A\u00e7 d\u00fc\u011fmesindeki ba\u011flant\u0131, Office 365 oturum a\u00e7ma sayfas\u0131 gibi g\u00f6r\u00fcnen bir kimlik av\u0131 sayfas\u0131na gidiyor.<\/p>\n
![\"\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/91\/2021\/05\/07160731\/office-365-phishing-via-gdocs-office-login.jpg\")
Sahte oturum a\u00e7ma sayfas\u0131<\/p><\/div>\n
\u00a0<\/p>\n
Tehlike i\u015faretleri<\/h2>\n
Ba\u015flang\u0131\u00e7 olarak, gelen e-posta garip g\u00f6r\u00fcn\u00fcyor. Kayna\u011f\u0131 ve amac\u0131 a\u00e7\u0131k olmayan bir e-postay\u0131 birisine y\u00f6nlendirmeyi b\u0131rak\u0131n, b\u00f6yle bir \u015feye zaten g\u00fcvenmemelisiniz. Bu \u00f6rnekte belirtildi\u011fi gibi bahsi ge\u00e7en bir para yat\u0131rma i\u015flemiyle alakan\u0131z yoksa, o zaman sizin i\u00e7in en iyisi bu konuda bir \u015fey yapmamakt\u0131r.<\/p>\n
Tehlike i\u015faretlerine dair di\u011fer kan\u0131tlar:<\/p>\n
- \n
- \u015eirket d\u0131\u015f\u0131ndaki bir kaynaktan gelen e-postalarda genelde bir \u015firketin dahili belgelerine ba\u011flant\u0131 verilmez;<\/li>\n
- Ger\u00e7ek finansal belgeler, bir \u015firketteki belirli ki\u015filerin eri\u015fimine a\u00e7\u0131l\u0131r; herkesin de\u011fil.<\/li>\n
- E-postadaki dosya ad\u0131 ile OneDrive\u2019da oldu\u011fu iddia edilen dosya ad\u0131 e\u015fle\u015fmiyor;<\/li>\n
- Google Docs, Microsoft OneDrive sayfalar\u0131n\u0131 bar\u0131nd\u0131rmaz (taray\u0131c\u0131n\u0131n adres \u00e7ubu\u011funa bak\u0131n);<\/li>\n
- OneDrive ile Outlook farkl\u0131 uygulamalard\u0131r ve OneDrive\u2019daki A\u00e7<\/em> d\u00fc\u011fmesi sizi Outlook oturum a\u00e7ma sayfas\u0131na y\u00f6nlendirmemelidir;<\/li>\n
- Outlook oturum a\u00e7ma sayfalar\u0131 Amazon internet sitelerinde bulunmaz (taray\u0131c\u0131n\u0131n adres \u00e7ubu\u011fundan g\u00f6rebilece\u011finiz bir ba\u015fka i\u015faret).<\/li>\n<\/ul>\n
Her i\u015faret bir \u015f\u00fcphe yaratmal\u0131d\u0131r ve i\u015faretler bir araya geldi\u011finde art\u0131k \u015f\u00fcphe ortadan kalkar ve durum netle\u015fir: Buras\u0131 Office 365 kimlik bilgilerinizi girmek i\u00e7in g\u00fcvenli bir yer de\u011fildir.<\/p>\n
G\u00fcvenli\u011finizi nas\u0131l sa\u011flayabilirsiniz?<\/h2>\n
Dijital g\u00fcvenli\u011fin anahtar\u0131, ayr\u0131nt\u0131lara dikkat etmek ve kimlik av\u0131 hilelerinin<\/a> fark\u0131nda olmakt\u0131r. Ayr\u0131ca, bu konuda \u00e7evrimi\u00e7i bir e\u011fitimimizin de oldu\u011fu<\/a>, mevcut siber tehditler konusunda kurumsal fark\u0131ndal\u0131\u011f\u0131n\u0131z\u0131 art\u0131rman\u0131z\u0131 \u015fiddetle tavsiye ediyoruz.<\/p>\n
\u00c7al\u0131\u015fanlar\u0131n e\u011fitimine ek olarak, kurumsal<\/a> ve i\u015f istasyonu<\/a> seviyelerindeki ba\u011flant\u0131 tarama ara\u00e7lar\u0131ndan yararlan\u0131n.<\/p>\n\n
\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"
Kimlik avc\u0131lar\u0131, Microsoft’un online servis hesaplar\u0131n\u0131 ele ge\u00e7irmek i\u00e7in Google’\u0131n online servislerini kullan\u0131yor.<\/p>\n","protected":false},"author":2598,"featured_media":9615,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1726,1194],"tags":[1921,2406,1074,38,2160],"class_list":{"0":"post-9614","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-enterprise","8":"category-business","9":"tag-e-posta","10":"tag-google-docs","11":"tag-kimlik-avi","12":"tag-microsoft","13":"tag-office-365"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/office-365-phishing-via-gdocs\/9614\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/office-365-phishing-via-gdocs\/22814\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/office-365-phishing-via-gdocs\/18296\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/office-365-phishing-via-gdocs\/9095\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/office-365-phishing-via-gdocs\/24706\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/office-365-phishing-via-gdocs\/22703\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/office-365-phishing-via-gdocs\/21858\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/office-365-phishing-via-gdocs\/25255\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/office-365-phishing-via-gdocs\/24603\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/office-365-phishing-via-gdocs\/30664\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/office-365-phishing-via-gdocs\/39828\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/office-365-phishing-via-gdocs\/16899\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/office-365-phishing-via-gdocs\/14808\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/office-365-phishing-via-gdocs\/26714\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/office-365-phishing-via-gdocs\/30649\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/office-365-phishing-via-gdocs\/27019\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/office-365-phishing-via-gdocs\/23855\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/office-365-phishing-via-gdocs\/29190\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/office-365-phishing-via-gdocs\/28987\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/kimlik-avi\/","name":"kimlik av\u0131"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9614","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2598"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=9614"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9614\/revisions"}],"predecessor-version":[{"id":9620,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9614\/revisions\/9620"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/9615"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=9614"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=9614"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=9614"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- Outlook oturum a\u00e7ma sayfalar\u0131 Amazon internet sitelerinde bulunmaz (taray\u0131c\u0131n\u0131n adres \u00e7ubu\u011fundan g\u00f6rebilece\u011finiz bir ba\u015fka i\u015faret).<\/li>\n<\/ul>\n