{"id":476532,"date":"2023-08-09T07:29:55","date_gmt":"2023-08-09T07:29:55","guid":{"rendered":""},"modified":"2024-05-27T18:43:19","modified_gmt":"2024-05-27T18:43:19","slug":"cyber-incident","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/tr\/wiki\/cyber-incident\/","title":{"rendered":"Siber Olay"},"content":{"rendered":"

Siber olaylar bilgi sistemlerinin, a\u011f altyap\u0131lar\u0131n\u0131n ve dijital verilerin g\u00fcvenli\u011fini tehdit eden olaylard\u0131r. Bilgisayar korsanl\u0131\u011f\u0131, kimlik av\u0131, fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131lar\u0131 ve yetkisiz eri\u015fim veya veri ihlalleri gibi \u00e7e\u015fitli k\u00f6t\u00fc ama\u00e7l\u0131 etkinlikleri i\u00e7erebilirler. Dijital teknolojilerin yayg\u0131nl\u0131\u011f\u0131 g\u00f6z \u00f6n\u00fcne al\u0131nd\u0131\u011f\u0131nda, siber olaylar\u0131n anla\u015f\u0131lmas\u0131 i\u015fletmeler, h\u00fck\u00fcmetler ve bireyler i\u00e7in hayati \u00f6neme sahiptir.<\/p>\n

Siber Olaylar\u0131n K\u00f6keni ve \u0130lk \u00d6rnekleri<\/h2>\n

Siber olaylar\u0131n tarihi, bilgisayar a\u011flar\u0131n\u0131n ve internetin geli\u015fimiyle yak\u0131ndan ba\u011flant\u0131l\u0131d\u0131r. Bilinen ilk siber olay, 1988 y\u0131l\u0131nda \u201cMorris Solucan\u0131\u201dn\u0131n yarat\u0131lmas\u0131na dayanmaktad\u0131r. Cornell \u00dcniversitesi'nde y\u00fcksek lisans \u00f6\u011frencisi olan Robert Tappan Morris, internetin boyutunu \u00f6l\u00e7mek i\u00e7in bir solucan program\u0131 olu\u015fturdu. Ancak solucan o kadar h\u0131zl\u0131 yay\u0131ld\u0131 ki internetin b\u00fcy\u00fck b\u00f6l\u00fcm\u00fcnde \u00f6nemli yava\u015flamalara yol a\u00e7arak da\u011f\u0131t\u0131lm\u0131\u015f hizmet reddi (DDoS) sald\u0131r\u0131s\u0131n\u0131n ilk dikkate de\u011fer \u00f6rne\u011fini olu\u015fturdu.<\/p>\n

Siber Olaylar\u0131 Daha Derinlemesine \u0130ncelemek<\/h2>\n

Siber olaylar, \u00f6ncelikle bilgi sistemleri ve verilerin gizlili\u011fini, b\u00fct\u00fcnl\u00fc\u011f\u00fcn\u00fc veya kullan\u0131labilirli\u011fini hedef alan \u00e7e\u015fitli bi\u00e7imlerde ortaya \u00e7\u0131kabilir. Mali kazan\u00e7, siyasi hedefler, casusluk veya yaln\u0131zca k\u00f6t\u00fc niyetli niyet gibi \u00e7e\u015fitli motivasyonlarla y\u00f6nlendirilebilirler. Bulut bili\u015fim, IoT cihazlar\u0131 ve dijital ba\u011flant\u0131lardaki art\u0131\u015f, tehdit ortam\u0131n\u0131 geni\u015fleterek siber su\u00e7lular\u0131n \u00e7e\u015fitli g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanmas\u0131na olanak tan\u0131d\u0131.<\/p>\n

Siber Olaylar\u0131n Anatomisi<\/h2>\n

Bir siber olay genellikle siber \u00f6ld\u00fcrme zinciri olarak adland\u0131r\u0131lan bir olaylar zincirini i\u00e7erir. Buna ke\u015fif (hedef hakk\u0131nda bilgi toplamak), silahla\u015ft\u0131rma (bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan yararlanmak i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 bir ara\u00e7 olu\u015fturmak), teslimat (silah\u0131 hedefe iletmek), yararlanma (g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan yararlanmak), kurulum (eri\u015fimi s\u00fcrd\u00fcrmek i\u00e7in bir arka kap\u0131 kurmak) dahildir. ), komuta ve kontrol (g\u00fcvenli\u011fi ihlal edilmi\u015f sistemi kontrol etmek) ve hedeflere y\u00f6nelik eylemler (veri h\u0131rs\u0131zl\u0131\u011f\u0131 gibi hedeflere ula\u015fmak).<\/p>\n

Siber Olaylar\u0131n Temel \u00d6zellikleri<\/h2>\n

Siber olaylar\u0131n ay\u0131rt edici \u00f6zellikleri aras\u0131nda dijital yap\u0131lar\u0131, h\u0131zl\u0131 uygulanmalar\u0131, potansiyel olarak b\u00fcy\u00fck \u00f6l\u00e7ekli olmalar\u0131 ve geni\u015f kapsaml\u0131 etkileri yer almaktad\u0131r. Hedefli veya ayr\u0131ms\u0131z, karma\u015f\u0131k veya basit olabilirler ve tek akt\u00f6rleri, organize gruplar\u0131 ve hatta devlet akt\u00f6rlerini i\u00e7erebilirler. \u00dcstelik ciddi mali, itibari ve operasyonel zararlara yol a\u00e7abilirler.<\/p>\n

Tarihin En B\u00fcy\u00fck Siber Sald\u0131r\u0131lar\u0131<\/h2>\n

Marriott Otel Veri \u0130hlali<\/h3>\n

2018 y\u0131l\u0131nda Marriott, yakla\u015f\u0131k 500 milyon misafirin ki\u015fisel bilgilerinin a\u00e7\u0131\u011fa \u00e7\u0131kt\u0131\u011f\u0131 b\u00fcy\u00fck bir veritaban\u0131 ihlalini ortaya \u00e7\u0131kard\u0131. \u0130hlal birka\u00e7 y\u0131ld\u0131r fark edilemiyordu. 2020'deki bir ba\u015fka ihlal 5,2 milyon misafiri etkiledi ve 2022'de bilgisayar korsanlar\u0131, m\u00fc\u015fteri \u00f6deme bilgileri ve i\u015f belgeleri de dahil olmak \u00fczere 20 GB veri \u00e7ald\u0131.<\/p>\n

WannaCry Fidye Yaz\u0131l\u0131m\u0131<\/h3>\n

2017'deki WannaCry fidye yaz\u0131l\u0131m\u0131 sald\u0131r\u0131s\u0131 150 \u00fclkede 200.000'den fazla bilgisayar\u0131 etkileyerek verileri \u015fifreledi ve Bitcoin fidyesini talep etti. Zararlar y\u00fcz milyonlarca dolardan milyarlarca dolara kadar de\u011fi\u015fiyordu. 2018'de yeni bir s\u00fcr\u00fcm ortaya \u00e7\u0131kt\u0131.<\/p>\n

Ukrayna Elektrik \u015eebekesine Sald\u0131r\u0131<\/h3>\n

2015 y\u0131l\u0131nda Ukrayna'n\u0131n elektrik \u015febekesine d\u00fczenlenen siber sald\u0131r\u0131, "Kum Solucan\u0131" grubuna atfedilen 230.000 m\u00fc\u015fterinin kesintisine neden oldu. Bu, bir elektrik \u015febekesine yap\u0131lan ve t\u00fcm \u00fclkeyi \u00f6nemli \u00f6l\u00e7\u00fcde etkileyen, kamuoyu taraf\u0131ndan kabul edilen ilk sald\u0131r\u0131yd\u0131.<\/p>\n

2014 Yahoo Sald\u0131r\u0131s\u0131<\/h3>\n

Yahoo, 2014 y\u0131l\u0131nda yakla\u015f\u0131k 500 milyon hesab\u0131n ele ge\u00e7irildi\u011fi en b\u00fcy\u00fck veri ihlallerinden birini ya\u015fad\u0131. Devlet destekli bir akt\u00f6re, a\u00e7\u0131\u011fa \u00e7\u0131kan isimlere, e-posta adreslerine, telefon numaralar\u0131na, \u015fifrelere ve do\u011fum tarihlerine atfedilen ihlal.<\/p>\n

Adobe Siber Sald\u0131r\u0131<\/h3>\n

Adobe, 2013 y\u0131l\u0131nda 38 milyon hesab\u0131 tehlikeye atan bir siber sald\u0131r\u0131 ya\u015fad\u0131. Bilgisayar korsanlar\u0131 Photoshop'un kaynak kodunun baz\u0131 k\u0131s\u0131mlar\u0131n\u0131 \u00e7ald\u0131. Adobe ba\u015flang\u0131\u00e7ta 2,9 milyon hesab\u0131n etkilendi\u011fini bildirdi ve sald\u0131r\u0131 \u015firketin itibar\u0131na \u00f6nemli \u00f6l\u00e7\u00fcde zarar vererek $1 milyonun \u00fczerinde para cezas\u0131na yol a\u00e7t\u0131.<\/p>\n

PlayStation A\u011f Sald\u0131r\u0131s\u0131<\/h3>\n

2011 y\u0131l\u0131nda Sony'nin PlayStation Network'\u00fc sald\u0131r\u0131ya u\u011frad\u0131, 77 milyon hesab\u0131n ki\u015fisel bilgileri a\u00e7\u0131\u011fa \u00e7\u0131kt\u0131 ve 23 g\u00fcnl\u00fck bir kesintiye neden oldu. Sald\u0131r\u0131 Sony'ye yakla\u015f\u0131k $178 milyon dolara mal oldu ve \u00e7ok say\u0131da davaya yol a\u00e7t\u0131.<\/p>\n

Estonya Siber Sald\u0131r\u0131s\u0131<\/h3>\n

2007'de Estonya'ya yap\u0131lan bir DDOS sald\u0131r\u0131s\u0131, h\u00fck\u00fcmet, medya ve banka siteleri de dahil olmak \u00fczere 58 web sitesini \u00e7evrimd\u0131\u015f\u0131na ald\u0131. Siyasi bir anla\u015fmazl\u0131\u011f\u0131n ard\u0131ndan ger\u00e7ekle\u015fen sald\u0131r\u0131 yakla\u015f\u0131k $1 milyona mal oldu ve t\u00fcm \u00fclkeye yap\u0131lan ilk siber sald\u0131r\u0131 oldu.<\/p>\n

NASA Siber Sald\u0131r\u0131s\u0131<\/h3>\n

1999'da NASA'ya yap\u0131lan bir siber sald\u0131r\u0131, bilgisayarlar\u0131n\u0131 21 g\u00fcn s\u00fcreyle kapatt\u0131 ve onar\u0131mlarda $41.000 dolara mal oldu. On be\u015f ya\u015f\u0131ndaki bir bilgisayar korsan\u0131 sorumluydu ve kritik sistemlerdeki g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 vurgulayarak alt\u0131 ay hapis cezas\u0131na \u00e7arpt\u0131r\u0131ld\u0131.<\/p>\n

Oynat<\/h3>\n

May\u0131s 2023'te MOVEit Transfer yaz\u0131l\u0131m\u0131ndaki bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan yararlan\u0131larak 2000'den fazla kurulu\u015f etkilenmi\u015f ve 60 milyon ki\u015finin verileri a\u00e7\u0131\u011fa \u00e7\u0131km\u0131\u015ft\u0131r. Cl0p fidye yaz\u0131l\u0131m\u0131 \u00e7etesinin dahil oldu\u011fu sald\u0131r\u0131, yayg\u0131n etkisi nedeniyle en b\u00fcy\u00fck ve en zarar verici sald\u0131r\u0131lardan biri.<\/p>\n

Melissa Vir\u00fcs\u00fc<\/h3>\n

1999 y\u0131l\u0131nda David Lee Smith taraf\u0131ndan piyasaya s\u00fcr\u00fclen Melissa Vir\u00fcs\u00fc, k\u00f6t\u00fc ama\u00e7l\u0131 bir belge arac\u0131l\u0131\u011f\u0131yla bilgisayarlara bula\u015farak \u00f6nemli hasarlara neden oldu. Sald\u0131r\u0131, Microsoft dahil bir\u00e7ok kullan\u0131c\u0131 ve \u015firketi etkileyerek $80 milyon zarara neden oldu.<\/p>\n

Siber Olay T\u00fcrleri<\/h2>\n

Farkl\u0131 siber olay t\u00fcrlerini g\u00f6steren bir tablo a\u015fa\u011f\u0131da verilmi\u015ftir:<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
Tip<\/th>\nTan\u0131m<\/th>\n<\/tr>\n<\/thead>\n
K\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m<\/td>\nSistemlere zarar vermek veya verileri \u00e7almak i\u00e7in tasarlanm\u0131\u015f k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar.<\/td>\n<\/tr>\n
E-doland\u0131r\u0131c\u0131l\u0131k<\/td>\nHassas bilgileri elde etmeye y\u00f6nelik hileli giri\u015fimler.<\/td>\n<\/tr>\n
DDoS Sald\u0131r\u0131lar\u0131<\/td>\nBir sistemin kaynaklar\u0131n\u0131n kesintiye neden olacak \u015fekilde a\u015f\u0131r\u0131 kullan\u0131lmas\u0131.<\/td>\n<\/tr>\n
Veri ihlalleri<\/td>\nHassas verilere yetkisiz eri\u015fim ve bunlar\u0131n \u00e7\u0131kar\u0131lmas\u0131.<\/td>\n<\/tr>\n
\u0130\u00e7eriden Tehditler<\/td>\nOrganizasyon i\u00e7indeki bireylerin olu\u015fturdu\u011fu tehditler.<\/td>\n<\/tr>\n
Fidye yaz\u0131l\u0131m\u0131<\/td>\nFidye \u00f6denene kadar verileri \u015fifreleyen k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m.<\/td>\n<\/tr>\n
Kripto h\u0131rs\u0131zl\u0131\u011f\u0131<\/td>\nKaynaklar\u0131n kripto para madencili\u011fi i\u00e7in izinsiz kullan\u0131lmas\u0131.<\/td>\n<\/tr>\n
SQL Enjeksiyonu<\/td>\nVeritabanlar\u0131n\u0131 de\u011fi\u015ftirmek i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 SQL kodunun eklenmesi.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Kullan\u0131m, Sorunlar ve \u00c7\u00f6z\u00fcmler<\/h2>\n

Siber olaylar \u00e7o\u011funlukla su\u00e7 faaliyetleriyle ili\u015fkilidir. Ancak bunlar\u0131 anlamak ayn\u0131 zamanda siber savunmaya da yard\u0131mc\u0131 olur. Temel sorun, bunlar\u0131n artan s\u0131kl\u0131\u011f\u0131 ve karma\u015f\u0131kl\u0131\u011f\u0131d\u0131r. \u00c7\u00f6z\u00fcmler aras\u0131nda g\u00fc\u00e7l\u00fc siber g\u00fcvenlik \u00f6nlemleri, d\u00fczenli yamalar ve g\u00fcncellemeler, kullan\u0131c\u0131 e\u011fitimi ve olay m\u00fcdahale planlar\u0131 yer al\u0131r.<\/p>\n

Benzer Terimlerle Kar\u015f\u0131la\u015ft\u0131rmalar<\/h2>\n

Siber olaylar genel olarak dijital g\u00fcvenli\u011fi tehdit eden herhangi bir olay\u0131 ifade etse de ilgili terimler belirli y\u00f6nlere odaklan\u0131r:<\/p>\n\n\n\n\n\n\n\n\n
Terim<\/th>\nTan\u0131m<\/th>\n<\/tr>\n<\/thead>\n
Siber sald\u0131r\u0131<\/td>\nDijital sistemleri tehlikeye atmaya y\u00f6nelik kas\u0131tl\u0131 bir eylem.<\/td>\n<\/tr>\n
Siber Tehdit<\/td>\nBir olaya yol a\u00e7abilecek olas\u0131 bir siber sald\u0131r\u0131.<\/td>\n<\/tr>\n
Siber G\u00fcvenlik Riski<\/td>\nSiber tehditlerden ve olaylardan kaynaklanan potansiyel hasar.<\/td>\n<\/tr>\n
Siber Su\u00e7<\/td>\nBilgisayar a\u011flar\u0131 arac\u0131l\u0131\u011f\u0131yla y\u00fcr\u00fct\u00fclen yasa d\u0131\u015f\u0131 faaliyetler.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Gelecek Perspektifleri ve Teknolojiler<\/h2>\n

Teknoloji geli\u015ftik\u00e7e siber olaylar\u0131n do\u011fas\u0131 da geli\u015fiyor. Gelecek perspektifleri aras\u0131nda yapay zeka odakl\u0131 sald\u0131r\u0131lardaki art\u0131\u015f, 5G g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanma ve kuantum hesaplama gibi yeni ortaya \u00e7\u0131kan teknolojileri hedefleme yer al\u0131yor. Buna kar\u015f\u0131 koymak i\u00e7in yapay zeka destekli savunma sistemleri, geli\u015fmi\u015f \u015fifreleme ve proaktif siber g\u00fcvenlik stratejileri geli\u015ftiriliyor.<\/p>\n

Proxy Sunucular\u0131 ve Siber Olaylar<\/h2>\n

OneProxy taraf\u0131ndan sa\u011flananlar gibi proxy sunucular, siber olaylar\u0131n hem olu\u015fmas\u0131nda hem de azalt\u0131lmas\u0131nda rol oynayabilir. Bir yandan k\u00f6t\u00fc niyetli akt\u00f6rler, faaliyetlerini anonimle\u015ftirmek i\u00e7in proxy'ler kullanabilir. \u00d6te yandan proxy sunucular kurulu\u015flar\u0131n i\u00e7 a\u011flar\u0131n\u0131 korumalar\u0131na, internet kullan\u0131mlar\u0131n\u0131 y\u00f6netmelerine, gizliliklerini ve g\u00fcvenliklerini art\u0131rmalar\u0131na yard\u0131mc\u0131 olabilir.<\/p>\n

\u0130lgili Ba\u011flant\u0131lar<\/h2>\n

Siber olaylar hakk\u0131nda daha fazla bilgi i\u00e7in \u015furaya bak\u0131n:<\/p>\n

    \n
  1. \u00d6nemli Siber Olaylar (CSIS)<\/a><\/li>\n
  2. Siber G\u00fcvenlik ve Altyap\u0131 G\u00fcvenli\u011fi Ajans\u0131 (CISA)<\/a><\/li>\n
  3. Ulusal Standartlar ve Teknoloji Enstit\u00fcs\u00fc (NIST) \u2013 Siber G\u00fcvenlik Kaynaklar\u0131<\/a><\/li>\n
  4. Avrupa Birli\u011fi Siber G\u00fcvenlik Ajans\u0131 (ENISA)<\/a><\/li>\n<\/ol>\n

    G\u00fcn\u00fcm\u00fcz\u00fcn dijital ortam\u0131, siber olaylar\u0131n kapsaml\u0131 bir \u015fekilde anla\u015f\u0131lmas\u0131n\u0131 gerektirmektedir. Tehditler devam ederken, bilin\u00e7li ve dikkatli uygulamalar ve sa\u011flam g\u00fcvenlik altyap\u0131lar\u0131 bu riskleri \u00f6nemli \u00f6l\u00e7\u00fcde azaltabilir.<\/p>","protected":false},"featured_media":476533,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-476532","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about Cyber Incidents: A Comprehensive Understanding<\/mark>","faq_items":[{"question":"What is a cyber incident?","answer":"A cyber incident is an event that threatens the integrity, confidentiality, or availability of information systems, network infrastructures, and digital data. This includes various forms of malicious activities like hacking, phishing, ransomware attacks, and data breaches."},{"question":"When was the first recognized cyber incident?","answer":"The first recognized cyber incident dates back to 1988 with the creation of the \"Morris Worm\". This was a program created by a graduate student, Robert Tappan Morris, that propagated so rapidly it led to significant slowdowns in large parts of the internet, marking the first notable instance of a distributed denial of service (DDoS) attack."},{"question":"What are the key features of a cyber incident?","answer":"The key features of a cyber incident include its digital nature, its ability to execute rapidly, the potential for a large scale impact, and the wide-ranging consequences that can result from it. Such incidents can be targeted or indiscriminate, sophisticated or simple, and can involve single actors, organized groups, or even state-sponsored entities."},{"question":"What are some types of cyber incidents?","answer":"Some common types of cyber incidents include malware attacks, phishing, DDoS attacks, data breaches, insider threats, ransomware, cryptojacking, and SQL injection."},{"question":"How can we solve problems related to cyber incidents?","answer":"The key to mitigating cyber incidents is through robust cybersecurity measures, which include regular patching and updating of systems, user education on safe internet practices, and establishing strong incident response plans."},{"question":"How do proxy servers relate to cyber incidents?","answer":"Proxy servers can play a dual role when it comes to cyber incidents. Malicious actors might use proxies to hide their activities, but on the positive side, proxy servers can help organizations protect their internal networks, manage their internet usage, and enhance their privacy and security."},{"question":"What future developments can be expected in the field of cyber incidents?","answer":"With technological advancement, we can expect an increase in AI-driven attacks, exploitation of vulnerabilities in emerging technologies like 5G and quantum computing. However, we're also seeing the development of AI-driven defense systems, advanced encryption methods, and proactive cybersecurity strategies to counteract these threats."}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/wiki\/476532","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":3,"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/wiki\/476532\/revisions"}],"predecessor-version":[{"id":505412,"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/wiki\/476532\/revisions\/505412"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/media\/476533"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/tr\/wp-json\/wp\/v2\/media?parent=476532"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}