{"id":50858,"date":"2012-04-28T09:22:00","date_gmt":"2012-04-28T06:22:00","guid":{"rendered":"http:\/\/www.korhanyilmaz.com\/?p=50858"},"modified":"2012-04-28T11:28:56","modified_gmt":"2012-04-28T08:28:56","slug":"123456-alarmi","status":"publish","type":"post","link":"http:\/\/www.korhanyilmaz.com\/?p=50858","title":{"rendered":"123456 alarm\u0131"},"content":{"rendered":"

\"\"<\/a><\/p>\n

Redhack: T\u00dcB\u0130TAK fi\u015fi \u00e7ekip beklesin.\u00a0<\/strong><\/p>\n

\u0130STANBUL – \u201c27 Nisan-1 May\u0131s aras\u0131nda kurumunuza siber sald\u0131r\u0131 yap\u0131labilir!\u201d Bu uyar\u0131 d\u00fcn t\u00fcm kamu kurumlar\u0131n\u0131n bilgi i\u015flem y\u00f6neticilerine g\u00f6nderildi. G\u00f6nderen ise T\u00dcB\u0130TAK. T\u00dcB\u0130TAK b\u00fcnyesinde \u00e7al\u0131\u015fan Ulusal Bilgisayar Olaylar\u0131 M\u00fcdahale Ekibi Koordinasyon Merkezi (TR-BOME), Emniyet Genel M\u00fcd\u00fcrl\u00fc\u011f\u00fc Bili\u015fim Su\u00e7lar\u0131yla M\u00fccadele Ba\u015fkanl\u0131\u011f\u0131\u2019ndan gelen siber sald\u0131r\u0131 olabilir uyar\u0131s\u0131n\u0131n ard\u0131ndan kamuya muhtemel sald\u0131r\u0131lar\u0131 anlatt\u0131 ve \u00f6nlem al\u0131nmas\u0131n\u0131 istedi. En dikkat \u00e7ekici uyar\u0131 ise \u201cBasit parolalar\u0131 de\u011fi\u015ftirin\u201d oldu. Bu uyar\u0131 akla RedHack\u2019i ve onun hack\u2019ledi\u011fi Emniyet Genel M\u00fcd\u00fcrl\u00fc\u011f\u00fc ve \u0130\u00e7i\u015fleri Bakanl\u0131\u011f\u0131\u2019n\u0131 getirdi. \u0130ki kurumun da admin \u015fifresinin 123456 oldu\u011fu ortaya \u00e7\u0131km\u0131\u015ft\u0131.\u00a0<\/p>\n

T\u00dcB\u0130TAK\u2019\u0131n kamu kurumlar\u0131na g\u00f6nderdi\u011fini teyit etti\u011fi iletide \u015fu ifadelere yer verildi: \u201cSay\u0131n Sistem Y\u00f6neticisi, T\u00dcB\u0130TAK Bilgi ve Bilgi G\u00fcvenli\u011fi \u0130leri Teknolojiler Ara\u015ft\u0131rma Merkezi b\u00fcnyesinde faaliyet g\u00f6steren Ulusal Bilgisayar Olaylar\u0131 M\u00fcdahale Ekibi Koordinasyon Merkezi (TR-BOME), \u00fclkemizde meydana gelen veya gelebilecek siber g\u00fcvenlik olaylar\u0131 ile ilgili yurti\u00e7i ve yurtd\u0131\u015f\u0131ndan internet sayfas\u0131, e-posta adresi, telefon yoluyla ihbar kabul etmekte ve olayla ilgili taraflar aras\u0131nda koordinasyon g\u00f6revini y\u00fcr\u00fctmektedir.<\/p>\n

Emniyet Genel M\u00fcd\u00fcrl\u00fc\u011f\u00fc Bili\u015fim Su\u00e7lar\u0131yla M\u00fccadele Ba\u015fkanl\u0131\u011f\u0131\u2019ndan gelen bilgi ve internet forum sitelerinden elde edilen bilgiler neticesinde, 27 Nisan-1 May\u0131s tarihlerinde kurumunuza y\u00f6nelik siber sald\u0131r\u0131 yap\u0131labilece\u011fi bilgisine ula\u015f\u0131lm\u0131\u015ft\u0131r.\u201d<\/p>\n

HANG\u0130 Y\u00d6NTEMLER BEKLEN\u0130YOR<\/strong><\/p>\n

Olas\u0131 siber sald\u0131r\u0131 \u00e7e\u015fitleri hakk\u0131nda bilgi veren T\u00dcB\u0130TAK \u00f6zellikle 3 sald\u0131r\u0131 ile ilgili kurumlar\u0131 uyar\u0131yor. Uyar\u0131lardan ilki RDP (Remote Desktop Protocol) a\u00e7\u0131kl\u0131\u011f\u0131 sald\u0131r\u0131s\u0131. Bu a\u00e7\u0131k ile hacker\u2019lar uzak masa\u00fcst\u00fc y\u00f6ntemiyle kullan\u0131c\u0131n\u0131n direkt olarak bilgisayarlar\u0131na ula\u015f\u0131p sistemi t\u0131kayabiliyor. \u0130kincisi ise DDOS Sald\u0131r\u0131s\u0131 ad\u0131 verilen \u201cDa\u011f\u0131t\u0131k Hizmet D\u0131\u015f\u0131 B\u0131rakma\u201d y\u00f6ntemi. Bu y\u00f6ntem ile a\u00e7\u0131k kaynak kodu ile birlikte sunulan truva atlar\u0131 s\u00fcrekli de\u011fi\u015fim g\u00f6steriyor, bu nedenle anti-vir\u00fcs programlar\u0131 taraf\u0131ndan tan\u0131nam\u0131yor. Sonu\u00e7 olarak hack\u2019lenen siteye binlerce sorgu bir anda g\u00f6nderildi\u011fi i\u00e7in sistem kilitleniyor ve a\u015f\u0131r\u0131 y\u00fcklenmeden \u00f6t\u00fcr\u00fc \u00e7\u00f6k\u00fcyor. T\u00dcB\u0130TAK\u2019\u0131n uyard\u0131\u011f\u0131 \u00fc\u00e7\u00fcnc\u00fc y\u00f6ntem ise SQL enjeksiyonu sald\u0131r\u0131s\u0131. Yap\u0131sal Sorgulama Dili (Structured Query Language – SQL) denilen bu y\u00f6ntemde sistemin veri deposuna girebiliyor ve i\u00e7erdi\u011fi t\u00fcm veriler elde edebiliyor. Bu y\u00f6ntem genel olarak d\u00fcnya \u00e7ap\u0131nda kredi kart\u0131 bilgilerine ula\u015fma amac\u0131yla kullan\u0131l\u0131yor.<\/p>\n

REDHACK: F\u0130\u015e\u0130 \u00c7EKS\u0130NLER<\/strong><\/p>\n

Radikal\u2019e konu ile ilgili a\u00e7\u0131klamalarda bulunan RedHack grubu T\u00dcB\u0130TAK\u2019\u0131n \u201cBasit parolalar\u0131 de\u011fi\u015ftirin\u201d uyar\u0131s\u0131 ile ilgili olarak \u201cBizler sistemlere basit \u015fifreleri deneyerek girmiyoruz, girdi\u011fimiz sistemlerde \u015fifrelerin basit oldu\u011funu g\u00f6r\u00fcyoruz\u201d dedi. Bir sisteme girmek i\u00e7in y\u00fczlerce yol bulundu\u011funu s\u00f6yleyen grup \u201cBirini kapatsalar bir di\u011feri a\u00e7\u0131k kalacakt\u0131r. T\u00dcB\u0130TAK\u2019a tek \u00f6nerimiz fi\u015fi \u00e7ekip beklesinler\u201d ifadelerini kulland\u0131.<\/p>\n

\u015e\u0130R\u0130N BABA L\u0130DERL\u0130 HACKER’LAR!<\/strong><\/p>\n

\u0130simlerini \u00f6nce Ankara Emniyet M\u00fcd\u00fcrl\u00fc\u011f\u00fc\u2019n\u00fc sonra da \u0130\u00e7i\u015fleri Bakanl\u0131\u011f\u0131\u2019n\u0131n sitesini hack\u2019leyerek duyurdular. \u0130simleri RedHack. 1997\u2019den beri faaliyetteler. Grup liderleri Radikal\u2019e verdi\u011fi r\u00f6portajda daha \u00f6nceki liderlik nicki MaNYaK\u2019\u0131 de\u011fi\u015ftirip \u201cYerine \u015eirin Baba\u2019y\u0131 \u00f6nder se\u00e7tik, daha sevimli\u201d demi\u015fti. Haklar\u0131nda b\u00fcy\u00fck \u00e7apl\u0131 bir soru\u015fturma oldu\u011fu biliniyor ama grup \u00fcyeleri yay\u0131mlad\u0131klar\u0131 bir mesajda \u201cPolisinden de, \u00f6zel savc\u0131s\u0131ndan da, Interpol\u2019\u00fcnden, M\u0130T\u2019ine CIA\u2019ine kadar sinmiyoruz, korkmuyoruz\u201d diyor.<\/p>\n

Kaynak : GAZETEPORT<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

\n

Redhack: T\u00dcB\u0130TAK fi\u015fi \u00e7ekip beklesin. <\/p>\n

\u0130STANBUL – \u201c27 Nisan-1 May\u0131s aras\u0131nda kurumunuza siber sald\u0131r\u0131 yap\u0131labilir!\u201d Bu uyar\u0131 d\u00fcn t\u00fcm kamu kurumlar\u0131n\u0131n bilgi i\u015flem y\u00f6neticilerine g\u00f6nderildi. G\u00f6nderen ise T\u00dcB\u0130TAK. T\u00dcB\u0130TAK b\u00fcnyesinde \u00e7al\u0131\u015fan Ulusal Bilgisayar Olaylar\u0131 M\u00fcdahale Ekibi Koordinasyon Merkezi (TR-BOME), Emniyet Genel M\u00fcd\u00fcrl\u00fc\u011f\u00fc Bili\u015fim Su\u00e7lar\u0131yla M\u00fccadele Ba\u015fkanl\u0131\u011f\u0131\u2019ndan gelen <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[105],"tags":[],"class_list":["post-50858","post","type-post","status-publish","format-standard","hentry","category-gundem","odd"],"_links":{"self":[{"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=\/wp\/v2\/posts\/50858","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=50858"}],"version-history":[{"count":0,"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=\/wp\/v2\/posts\/50858\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=50858"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=50858"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.korhanyilmaz.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=50858"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}