{"id":1290,"date":"2013-09-29T23:11:49","date_gmt":"2013-09-29T20:11:49","guid":{"rendered":"http:\/\/www.devrearsiv.com\/?p=1290"},"modified":"2013-09-29T23:11:49","modified_gmt":"2013-09-29T20:11:49","slug":"siber-askerler-icefog","status":"publish","type":"post","link":"https:\/\/devrearsivi.com\/siber-askerler-icefog\/","title":{"rendered":"Siber askerler ”Icefog”"},"content":{"rendered":"
Kurumsal alanda u\u00e7 nokta koruma \u00e7\u00f6z\u00fcmlerinde lider \u015firket Kaspersky Lab g\u00fcvenlik ekibi, G\u00fcney Kore ve Japonya\u2019daki hedeflere yo\u011funla\u015fan ve buradaki Bat\u0131l\u0131 \u015firketlerin tedarik zincirlerini vuran \u201cIcefog\u201d adl\u0131 k\u00fc\u00e7\u00fck ancak dinamik bir APT (Advanced Persistent Threat-Geli\u015fmi\u015f Siber Silahlar) grubuyla ilgili yeni bir ara\u015ft\u0131rma belgesi yay\u0131mlad\u0131.<\/strong><\/em><\/p>\n <\/strong><\/em>2011\u2019de operasyona ba\u015flayan ve son birka\u00e7 y\u0131lda boyutlar\u0131 ve kapsam\u0131 geni\u015fleyen Icefog ile ilgili a\u00e7\u0131klama yapan Global Ara\u015ft\u0131rma ve Analiz Ekibi Direkt\u00f6r\u00fc Costin Raiu, \u201cSon birka\u00e7 y\u0131lda benzer sekt\u00f6rlerden hemen hemen ayn\u0131 t\u00fcrde kurbanlar\u0131 vuran bir dizi APT\u2019nin varl\u0131\u011f\u0131n\u0131 ke\u015ffettik. Sald\u0131rganlar \u00e7o\u011funlukla kurumsal ve devlet a\u011flar\u0131nda belirli noktalara tutunuyor ve terabyte\u2019larla ifade dilebilecek miktarda \u00f6nemli bilgiyi ka\u00e7\u0131r\u0131yor\u201d dedi. Icefog sald\u0131r\u0131lar\u0131n\u0131n \u2018vur-ka\u00e7\u2019 niteli\u011fi yeni bir trendin olu\u015ftu\u011funu g\u00f6sterdi\u011fini de ekleyen Raiu s\u00f6zlerini \u015fu \u015fekilde s\u00fcrd\u00fcrd\u00fc: \u201cBunlar, hedefe y\u00f6nelik bir \u015fekilde bilginin pe\u015fine d\u00fc\u015fen k\u00fc\u00e7\u00fck vur-ka\u00e7 \u00e7eteleri. Sald\u0131r\u0131 genellikle birka\u00e7 g\u00fcn veya bir hafta s\u00fcr\u00fcyor. Arad\u0131klar\u0131na ula\u015ft\u0131ktan sonra sald\u0131rganlar gerekli temizlikleri yap\u0131p gidiyor. Gelecekte bu k\u00fc\u00e7\u00fck, hedefe odaklanm\u0131\u015f \u2018kiral\u0131k APT\u2019 gruplar\u0131n\u0131n say\u0131s\u0131n\u0131n artaca\u011f\u0131n\u0131, vur-ka\u00e7 tarz\u0131 operasyonlarda uzmanla\u015facaklar\u0131n\u0131, bu ekiplerin modern d\u00fcnyan\u0131n bir t\u00fcr \u2018siber paral\u0131 askerleri\u2019 olarak de\u011ferlendirilebilece\u011fini d\u00fc\u015f\u00fcn\u00fcyoruz.\u201d<\/strong><\/em><\/p>\n Icefog ile ilgili ba\u015fl\u0131ca bulgular:<\/em><\/strong><\/p>\n \u00a0<\/em><\/strong><\/p>\n ARKA PLANDA ASYA \u00dcLKELER\u0130 VAR<\/em><\/strong><\/p>\n Kaspersky Lab ara\u015ft\u0131rmac\u0131lar\u0131, sald\u0131rganlar taraf\u0131ndan kullan\u0131lan 70\u2019ten fazla ana alandan 13\u2019\u00fcne ula\u015ft\u0131. Bu, d\u00fcnya \u00e7ap\u0131nda kurban say\u0131s\u0131na dair baz\u0131 istatistikler sa\u011fl\u0131yor. Icefog komutu ve kontrol sunucular\u0131 kurbanlar\u0131n\u0131n yan\u0131 s\u0131ra \u00fczerlerinde ger\u00e7ekle\u015ftirilen i\u015flemlerin \u015fifreli kay\u0131tlar\u0131n\u0131 tutuyor. Bu kay\u0131tlar baz\u0131 durumlarda sald\u0131r\u0131lar\u0131n hedeflerinin, hatta bazen kurbanlar\u0131n belirlenmesine yard\u0131mc\u0131 oluyor. Japonya ve G\u00fcney Kore\u2019nin yan\u0131 s\u0131ra Tayvan, Hong Kong, \u00c7in, ABD, Avustralya, Kanada, \u0130ngiltere, \u0130talya, Almanya, Avusturya, Singapur, Belarus ve Malezya\u2019da dahil baz\u0131 ba\u015fka \u00fclkelerde de ba\u011flant\u0131lar belirlenmi\u015f durumda. Kaspersky Lab toplamda 4.000\u2019den fazla etkilenmi\u015f IP ve birka\u00e7 y\u00fcz kurban\u0131 belirledi.<\/em><\/strong><\/p>\n \u00a0<\/em><\/strong><\/p>\n Altyap\u0131y\u0131 izlemek ve kontrol etmek i\u00e7in kullan\u0131lan IP\u2019lere bakarak Kaspersky Lab uzmanlar\u0131, bu operasyonun arkas\u0131nda yer alan oyuncular\u0131n en az \u015fu \u00fc\u00e7 \u00fclkede bulundu\u011funu varsay\u0131yor: \u00c7in, G\u00fcney Kore ve Japonya.<\/em><\/strong><\/p>\n Kaspersky Lab \u00fcr\u00fcnleri Icefog zararl\u0131 yaz\u0131l\u0131m\u0131n\u0131n t\u00fcm varyantlar\u0131n\u0131 belirlemekte ve engellemektedir. Arka kap\u0131lar, di\u011fer zararl\u0131 ara\u00e7lar ve istatistiklerle birlikte risk g\u00f6stergelerine dair ayr\u0131nt\u0131l\u0131 a\u00e7\u0131klamalar i\u00e7eren raporun tamam\u0131n\u0131 okumak i\u00e7in bkz. Securelist. Eksiksiz bir Icefog SSS b\u00f6l\u00fcm\u00fc de bulunmaktad\u0131r.<\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":" Kurumsal alanda u\u00e7 nokta koruma \u00e7\u00f6z\u00fcmlerinde lider \u015firket Kaspersky Lab g\u00fcvenlik ekibi, G\u00fcney Kore ve…<\/p>\n","protected":false},"author":1,"featured_media":1292,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[407,408,406],"aioseo_notices":[],"featured_image_urls":{"full":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"thumbnail":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker-150x103.jpg",150,103,true],"medium":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"medium_large":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"large":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"1536x1536":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"2048x2048":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"covernews-slider-full":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"covernews-slider-center":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"covernews-featured":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"covernews-medium":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false],"covernews-medium-square":["https:\/\/devrearsivi.com\/wp-content\/uploads\/2013\/09\/1377293136_hacker.jpg",240,103,false]},"author_info":{"display_name":"Ferhat \u00c7elik","author_link":"https:\/\/devrearsivi.com\/author\/94ferhat\/"},"category_info":"Teknoloji Haberleri<\/a>","tag_info":"Teknoloji Haberleri","comment_count":"0","_links":{"self":[{"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/posts\/1290"}],"collection":[{"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/comments?post=1290"}],"version-history":[{"count":1,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/posts\/1290\/revisions"}],"predecessor-version":[{"id":1293,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/posts\/1290\/revisions\/1293"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/media\/1292"}],"wp:attachment":[{"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/media?parent=1290"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/categories?post=1290"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devrearsivi.com\/wp-json\/wp\/v2\/tags?post=1290"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\n