{"id":25174,"date":"2017-05-16T14:13:28","date_gmt":"2017-05-16T11:13:28","guid":{"rendered":"http:\/\/politeknik.org.tr\/\/?p=25174"},"modified":"2019-01-28T20:40:17","modified_gmt":"2019-01-28T17:40:17","slug":"siber-atak-sorumlu-istihbarat-orgutleri-ve-microsoft-cozum-linux-chris-stephenson-t24","status":"publish","type":"post","link":"https:\/\/eonmeet.com\/pol\/siber-atak-sorumlu-istihbarat-orgutleri-ve-microsoft-cozum-linux-chris-stephenson-t24\/","title":{"rendered":"Siber Atak: Sorumlu, istihbarat \u00f6rg\u00fctleri ve Microsoft; \u00e7\u00f6z\u00fcm Linux! \u2013 Chris Stephenson (T24)"},"content":{"rendered":"<p>D\u00fcnya panikte.<\/p>\n<p>Bilgisayar ekranlar\u0131nda fidyeciden gelen \u201cdosyalar\u0131n\u0131z \u015fifrelenmi\u015f, onlar\u0131 geri almak i\u00e7in 300 Dolar  \u00f6deyin\u201d mesajlar\u0131 \u00e7\u0131k\u0131yor.<\/p>\n<p>\u0130ngiltere\u2019deki Ulusal Sa\u011fl\u0131k Hizmetleri (NHS) sistemi fel\u00e7. Hastane randevular\u0131 iptal ediliyor, r\u00f6ntgenler bile \u00e7ekilemiyor.<\/p>\n<p>Rusya\u2019da \u0130\u00e7i\u015fleri Bakanl\u0131\u011f\u0131\u2019nda i\u015fler durdu.<\/p>\n<p>Almanya\u2019daki tren istasyonlar\u0131n\u0131n bilgi ekranlar\u0131nda fidyecilerden gelen mesajlar var; trenlerin kalk\u0131\u015f saatleri kara tahtalara yaz\u0131l\u0131yor.<\/p>\n<p>Yakla\u015f\u0131k 300 bin bilgisayar \u201cWannaCry\u201d ya da \u201cWanaCryptOr2.0\u201d solucan\u0131yla enfekte olmu\u015f durumda. Solucan, bilgisayardan bilgisayara kendi kendine ge\u00e7ebilen k\u00f6t\u00fc niyetli bir programd\u0131r.<\/p>\n<p>Ancak bu sald\u0131r\u0131 arkas\u0131nda bir s\u00fcper beyin, s\u00fcper zeki ve k\u00f6t\u00fc bir hacker yok. Perde arkas\u0131nda devletlerin istihbarat kurumlar\u0131n\u0131n k\u00f6t\u00fc niyeti, kapitalist mant\u0131kla \u00e7al\u0131\u015fan h\u00fck\u00fcmetlerin k\u0131sa vadeli hesaplar\u0131 ve tabii ki Microsoft\u2019un kendi hatalar\u0131ndan bile para kazanma a\u00e7g\u00f6zl\u00fcl\u00fc\u011f\u00fc var.<\/p>\n<p>S\u00f6z konusu solucan, Windows i\u015fletim sisteminin bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 kullan\u0131yor. Bu i\u015fletim sistemin kurulu oldu\u011fu bir bilgisayara internetten belli ama beklenmeyen formatta bir mesaj g\u00f6nderilirse bilgisayar\u0131 ele ge\u00e7irmek m\u00fcmk\u00fcn. Ondan sonra o bilgisayardan ba\u015fka bilgisayarlara benzer mesajlar g\u00f6nderiliyor. Bu k\u00f6t\u00fc niyetli program b\u00f6ylece yay\u0131l\u0131yor.<br \/>\n<a href=\"\/wp-content\/uploads\/2017\/05\/saldirinin-haritasi-1024x513.png\"><img decoding=\"async\" width=\"1024\" height=\"513\" src=\"\/wp-content\/uploads\/2017\/05\/saldirinin-haritasi-1024x513.png\" alt=\"\" class=\"alignnone size-full wp-image-25175\" \/><\/a>Sald\u0131r\u0131n\u0131n haritas\u0131<\/p>\n<p><strong>\u0130stihbarat \u201ca\u00e7\u0131\u011f\u0131<\/strong><br \/>\nAsl\u0131nda bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131 epey eski. \u00d6yle ki Windows\u2019un XP versiyonunda bile mevcut. \u00dcstelik bu a\u00e7\u0131k y\u0131llar \u00f6nce ABD Ulusal G\u00fcvenlik Ajans\u0131 (NSA) taraf\u0131ndan tespit edilmi\u015f. Ancak NSA y\u00f6neticileri bulunan a\u00e7\u0131\u011f\u0131 bilgisayar kullan\u0131c\u0131lar\u0131na ya da Microsoft\u2019a haber vermek yerine, kendi ama\u00e7lar\u0131 i\u00e7in kullanmaya karar vermi\u015f. Bulunan g\u00fcvenlik a\u00e7\u0131klar\u0131 gizlenerek bir ispiyonculuk program seti (toolkit) haz\u0131rlanm\u0131\u015f. Bu program setini kullanarak istedikleri bilgisayarlara girecek \u00e7e\u015fitli programlar \u00fcretmek m\u00fcmk\u00fcn.<\/p>\n<p>\u0130stihbarat \u00f6rg\u00fctlerinin bu yakla\u015f\u0131m\u0131 d\u0131\u015f\u0131nda bir sorun daha var. Devletlerin her alanda ta\u015feronla\u015fmaya gidiyor olmas\u0131. Bu durum, g\u00fcvenlik hizmetleri i\u00e7in bile ge\u00e7erli. ABD\u2019de bir dizi bilgi s\u0131zmas\u0131 bu y\u00fczden oldu. \u00d6rne\u011fin Edward Snowden ta\u015feron bir firman\u0131n eleman\u0131yd\u0131. Tam nas\u0131l s\u0131zd\u0131rd\u0131\u011f\u0131 bilinmiyor ama NSA\u2019n\u0131n haz\u0131rlad\u0131\u011f\u0131 ispiyonculuk program seti 2017 Nisan ay\u0131nda \u201cShadow Brokers\u201d isimli bir ekip taraf\u0131ndan kamuya s\u0131zd\u0131r\u0131ld\u0131. Ta\u015feronlardan \u015f\u00fcpheleniliyor. Set i\u00e7inde bulunan programlar\u0131n isimleri hayli ilgin\u00e7: \u00d6rne\u011fin ENGLISHMANSDENTIST. Ge\u00e7en g\u00fcnlerdeki sald\u0131r\u0131da kullan\u0131lan program ise ETERNALBLUE.  S\u0131zd\u0131r\u0131lan programlarda aras\u0131nda STUXNET solucan\u0131 bulunan baz\u0131 kod par\u00e7alar\u0131na rastland\u0131. STUXNET \u0130ran n\u00fckleer silah program\u0131nda kullan\u0131lan santrif\u00fcjlere sald\u0131rmak i\u00e7in kullan\u0131lm\u0131\u015f bir solucan.<\/p>\n<p><strong>\u0130lk \u201cfidye\u201d isteyen Microsoft!<\/strong><br \/>\nProgram seti (toolkit) s\u0131zd\u0131r\u0131ld\u0131\u011f\u0131nda art\u0131k bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan herkesin haberi olmu\u015ftu. Bundan sonra iki \u015fey oldu: Birincisi, bu toolkit k\u00f6t\u00fc niyetli program karaborsas\u0131nda, \u00f6zellikle ETERNALBLUE a\u00e7\u0131\u011f\u0131n\u0131 istismar eden k\u0131sm\u0131 kullan\u0131larak, baz\u0131 \u015fantaj programlar\u0131 olarak sat\u0131\u015fa \u00e7\u0131kar\u0131ld\u0131. Kullan\u0131ma haz\u0131r bir program 600 Dolara sat\u0131\u015fa sunuldu. Geriye sadece \u00e7al\u0131nan paran\u0131n toplanmas\u0131n\u0131 \u00f6rg\u00fctlemek kald\u0131. Paray\u0131 toplamak, tabii, su\u00e7 i\u015fleyen i\u00e7in her \u015fantaj operasyonun en tehlikeli k\u0131sm\u0131. Bu y\u00fczden teknik bilgisi olanlar do\u011frudan su\u00e7 i\u015flemek yerine bilgilerini satmay\u0131 tercih ederler.<\/p>\n<p><a href=\"\/wp-content\/uploads\/2017\/05\/windows.png\"><img decoding=\"async\" width=\"1196\" height=\"817\" src=\"\/wp-content\/uploads\/2017\/05\/windows.png\" alt=\"\" class=\"alignnone size-full wp-image-25176\" \/><\/a><\/p>\n<p>\u0130kincisi Microsoft \u015firketinin bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 kapatan bir yama \u00fcretip da\u011f\u0131tmas\u0131. Asl\u0131nda bu tam program setinin NSA\u2019dan s\u0131zd\u0131r\u0131ld\u0131\u011f\u0131 zaman ve Shadow Brokers taraf\u0131ndan kamuya a\u00e7\u0131kland\u0131\u011f\u0131 zaman aras\u0131nda olmu\u015f. B\u00fcy\u00fck ihtimalde bu sefer NSA Microsoft\u2019a haber vermi\u015f.<\/p>\n<p>Microsoft destekledi\u011fi Windows i\u015fletim sistemleri i\u00e7in ayda bir yama seti da\u011f\u0131t\u0131yor. Mart ay\u0131nda \u00e7\u0131kan set i\u00e7inde bu a\u00e7\u0131\u011f\u0131 kapatan bir yama vard\u0131. Ancak Microsoft \u201cson kullan\u0131m tarihi ge\u00e7mi\u015f\u201d eski sistemlerini desteklemek i\u00e7in \u201cPremium Service Agreement\u201d ad\u0131 alt\u0131nda b\u00fcy\u00fck paralar istiyor. Eski i\u015fletim sistemleri aras\u0131nda Windows XP de var. Yani Windows XP do\u011fu\u015ftan bozuk, ama Microsoft, XP\u2019yi tamir etmek i\u00e7in para istiyor. Bu y\u00fczden bu \u201cfidye\u201dyi \u00f6demeyenler i\u00e7in XP\u2019ye yap\u0131lacak yama verilmedi.<\/p>\n<p><strong>\u0130ngiliz sa\u011fl\u0131k sistemi neden \u00e7\u00f6kt\u00fc?<\/strong><\/p>\n<p>Hikaye \u0130ngiltere\u2019de devam ediyor. Muhafazakar h\u00fck\u00fcmet, Ulusal Sa\u011fl\u0131k Hizmetleri sistemini kaynak aktarmayarak bat\u0131rmakla me\u015fgul. Ulusal Sa\u011fl\u0131k Hizmetleri i\u00e7inde Windows XP kullanan sistemler yayg\u0131n. 2015 y\u0131l\u0131na kadar bu sistemlere g\u00fcvenlik yamalar\u0131 tedarik etmek i\u00e7in Microsoft\u2019a her y\u0131l milyonlarca dolar veriliyordu. \u0130ngiltere Ulusal Sa\u011fl\u0131k Hizmetleriyle yap\u0131lan anla\u015fmaya g\u00f6re, Windows XP deste\u011fi i\u00e7in, birinci sene her bilgisayar ba\u015f\u0131na 200$, ikinci sene 400$, \u00fc\u00e7\u00fcnc\u00fc sene 800$ \u00f6denecekti.<\/p>\n<p>Sa\u011fl\u0131k bakan\u0131 birinci senenin sonunda anla\u015fmay\u0131 iptal etti, ancak yeni yaz\u0131l\u0131mlar\u0131n al\u0131nmas\u0131 i\u00e7in hastanelere kaynak verilmedi. Yamalar\u0131n temin edilmesi yerel hastaneler ve sa\u011fl\u0131k kurulu\u015flar\u0131na b\u0131rak\u0131ld\u0131. Tabii ki kaynaktan yoksun bu sa\u011fl\u0131k kurulu\u015flar\u0131 paralar\u0131n\u0131 daha acil ihtiya\u00e7lar i\u00e7in kulland\u0131lar. Dolay\u0131s\u0131yla onbinlerce bilgisayar korunmas\u0131z kald\u0131.<\/p>\n<p>Sonunda ge\u00e7en Cuma g\u00fcn\u00fc olan oldu. Sistemler \u00e7\u00f6kt\u00fc. Hastaneler \u00e7al\u0131\u015famaz hale geldiler. Ancak bu felaket olduktan sonra Microsoft Windows XP gibi eski sistemler i\u00e7in elindeki yamalar\u0131 ek para \u00f6demeyenlere de da\u011f\u0131tmaya ba\u015flad\u0131.<\/p>\n<p><strong>At ah\u0131rdan ka\u00e7t\u0131ktan sonra\u2026<\/strong><\/p>\n<p>Microsoft NSA\u2019y\u0131 Windows\u2019taki g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 ge\u00e7 haber vermekle su\u00e7luyor. Ancak eski Windows i\u015fletim sistemleri i\u00e7in Cuma g\u00fcn\u00fc da\u011f\u0131t\u0131lan yamalar \u015fu dijital imzalar\u0131 ta\u015f\u0131yor:<\/p>\n<p>Windows 8 RT (64-bit x86): 13 \u015eubat 2017<br \/>\nWindows 8 RT (32-bit x86): 13 \u015eubat 2017<br \/>\nWindows Server 2003 (64-bit x86): 11 \u015eubat 2017<br \/>\nWindows Server 2003 (32-bit x86): 11 \u015eubat 2017<br \/>\nWindows XP:  11 \u015eubat 2017<br \/>\nWindows XP Embedded: 17 \u015eubat 2017<\/p>\n<p>Yani g\u00fcvenlik yamalar\u0131 felaket \u00f6ncesi haz\u0131rlanm\u0131\u015f ama sadece para verenlere da\u011f\u0131t\u0131lm\u0131\u015f. Ta ki Cuma g\u00fcnk\u00fc felaket olunca kadar. Microsoft ancak at ah\u0131rdan ka\u00e7t\u0131ktan sonra ah\u0131r kap\u0131s\u0131n\u0131 kapatmaya \u00e7al\u0131\u015f\u0131yor. Tabii bo\u015funa de\u011fil! Microsoft bu yamalardan tatl\u0131 para kazand\u0131.<\/p>\n<p><strong>N\u00fckleer XP!<\/strong><\/p>\n<p>Halen Windows XP kullanmakta olan \u00e7ok \u00f6nemli kurulu\u015flar var. \u00d6rne\u011fin her biri n\u00fckleer 16 f\u00fcze ta\u015f\u0131yan \u0130ngiltere\u2019nin d\u00f6rt Trident denizalt\u0131s\u0131nda XP kullan\u0131l\u0131yor. Her f\u00fcze ayr\u0131 ayr\u0131 hedefleri vurabilen 14 kadar WG88 atom bombas\u0131 ta\u015f\u0131yor. Ve bu denizalt\u0131lar\u0131n bilgisayarlar\u0131n\u0131n i\u015fletim sistemi Windows XP. ABD donanmas\u0131n\u0131n Microsoft\u2019a bir y\u0131ll\u0131k destek i\u00e7in 32 milyon dolar \u00f6dedi\u011fi biliniyor. \u0130ngiliz h\u00fck\u00fcmetinin Microsoft\u2019a b\u00f6yle bir \u201cfidye\u201d \u00f6deyip \u00f6demedi\u011fi ise kamuoyunca bilinmiyor.<\/p>\n<p>\u201cKaranl\u0131k internet\u201dte ABD Ulusal G\u00fcvenlik Ajans\u0131\u2019ndan s\u0131zm\u0131\u015f olan EsteemAudit g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 kullanan yeni fidyeci toolkitler sat\u0131\u015fa \u00e7\u0131kart\u0131ld\u0131. Bu kitleri sat\u0131n al\u0131p kullanmak \u00e7ocuk i\u015fi. Yak\u0131nda sonu\u00e7lar\u0131 g\u00f6r\u00fcr\u00fcz.<\/p>\n<p><strong>\u201c\u015ealtersiz\u201d versiyon da \u00e7\u0131kt\u0131<\/strong><\/p>\n<p>Wannacrypt\u2019in daha fazla yay\u0131lmas\u0131n\u0131n engellenmesi \u0130ngiltere\u2019de hala anne-baba evinde ya\u015fayan 22 ya\u015f\u0131nda bir hackere ba\u011fl\u0131. Wannacrypt\u2019in kodlar\u0131n\u0131 inceleyerek i\u00e7inde bir \u201c\u00f6ld\u00fcrme \u015falterini\u201d fark etti. Internette ismi \u00e7ok kar\u0131\u015f\u0131k belli bir domain a\u00e7\u0131ld\u0131\u011f\u0131nda solucan yay\u0131lmay\u0131 durduracakt\u0131. Bu gen\u00e7 hemen 10$ vererek domain ismini sat\u0131n al\u0131p a\u00e7t\u0131. B\u00f6ylece b\u00fct\u00fcn solucanlar o siteyi arad\u0131\u011f\u0131 i\u00e7in bu gen\u00e7 b\u00fct\u00fcn solucanlar\u0131n yerlerini tespit edebildi. Ve solucan\u0131n yay\u0131lmas\u0131n\u0131 engeledi.<\/p>\n<p>Ancak 14 May\u0131s Pazar g\u00fcn\u00fc \u00f6ld\u00fcrme \u015falteri olmayan yeni bir solucan, Wannacrypt\u2019in \u201cUiwix\u201d versiyonu, Danimarkal\u0131 bir ara\u015ft\u0131rmac\u0131 taraf\u0131ndan bulundu.  Ve bu, tabii ki, son olmayacak!<\/p>\n<p>Cuma g\u00fcn\u00fc ya\u015fanan pani\u011fin kaynaklar\u0131 \u015f\u00f6yle \u00f6zetlenebilir:<\/p>\n<p>ABD NSA\u2019n\u0131n g\u00fcvenlik i\u00e7in de\u011fil; vatanda\u015f\u0131n g\u00fcvensizli\u011fi i\u00e7in \u00e7al\u0131\u015fmas\u0131.<\/p>\n<p>Devletin ta\u015feronla\u015fmas\u0131.<\/p>\n<p>Microsoft\u2019un a\u00e7g\u00f6zl\u00fcl\u00fc\u011f\u00fc.<\/p>\n<p>\u0130ngiltere\u2019deki h\u00fck\u00fcmetin NHS\u2019i bat\u0131rma \u00e7abalar\u0131.<\/p>\n<p>K\u0131sacas\u0131, kapitalizm iyi \u00e7al\u0131\u015fm\u0131yor; bilgisayar sistemlerini bile iyi y\u00f6netemiyor.<\/p>\n<p><a href=\"\/wp-content\/uploads\/2017\/05\/nsa-logo.jpg\"><img decoding=\"async\" width=\"1024\" height=\"768\" src=\"\/wp-content\/uploads\/2017\/05\/nsa-logo.jpg\" alt=\"\" class=\"alignnone size-full wp-image-25177\" \/><\/a><\/p>\n<p><strong>Ba\u015fka bir i\u015fletim sistemi m\u00fcmk\u00fcn<\/strong><br \/>\n\u00c7ok \u015f\u00fck\u00fcr ki internete ba\u011fl\u0131 sunucu (server) bilgisayarlar\u0131n ezici \u00e7o\u011funlu\u011funda Windows yerine Linux kullan\u0131l\u0131yor. Google\u2019\u0131n milyonlarca bilgisayar\u0131 Linux ile \u00e7al\u0131\u015f\u0131yor. Bu nedenle Cuma g\u00fcn\u00fc ya\u015fananlar\u0131n boyutlar\u0131 s\u0131n\u0131rl\u0131 kald\u0131.<\/p>\n<p>Linux\u2019ta da g\u00fcvenlik a\u00e7\u0131klar\u0131 olabiliyor. Ancak g\u00fcvenlik a\u00e7\u0131klar\u0131 \u00e7ok daha h\u0131zl\u0131 \u00e7\u00f6z\u00fcl\u00fcyor. \u00c7\u00fcnk\u00fc Linux sadece \u00fcretici firman\u0131n bildi\u011fi kapal\u0131 kodlar yerine a\u00e7\u0131k kodlarla yaz\u0131l\u0131yor ve topluluklar taraf\u0131ndan y\u00f6netiliyor. B\u00f6ylece hem a\u00e7\u0131klar daha h\u0131zl\u0131 bulunuyor hem de yamalar bir ay sonra de\u011fil saatler i\u00e7inde \u00fcretilip da\u011f\u0131t\u0131l\u0131yor.<\/p>\n<p>Masa\u00fcst\u00fc bilgisayarlar i\u00e7in ki\u015fisel bir kurtulu\u015f arayan okuyuculara Linux bir \u00e7\u00f6z\u00fcm olabilir. Kulland\u0131\u011f\u0131n Android cep telefonunun i\u015fletim sisteminin Linux oldu\u011funu biliyor musunuz? Cepte g\u00fcvenilebilir ise masa\u00fcst\u00fcnde neden olmas\u0131n?<br \/>\nY\u00fczlerce farkl\u0131 Linux var ve \u00e7o\u011fu bedava. Acemiler i\u00e7in Ubuntu ya da Linux Mint tavsiye edilir.<\/p>\n<p>Windows\u2019un alternatifi olan Linux i\u015fletim sistemleri ba\u015fka bir yolun m\u00fcmk\u00fcn oldu\u011funu g\u00f6steriyor.<\/p>\n","protected":false},"excerpt":{"rendered":"D\u00fcnya panikte. Bilgisayar ekranlar\u0131nda fidyeciden gelen \u201cdosyalar\u0131n\u0131z \u015fifrelenmi\u015f, onlar\u0131 geri almak i\u00e7in&hellip;\n","protected":false},"author":2,"featured_media":40571,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[4689],"tags":[2858,3581],"class_list":{"0":"post-25174","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-secki","8":"tag-siber-saldiri","9":"tag-wannacry"},"acf":[],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/posts\/25174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/comments?post=25174"}],"version-history":[{"count":0,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/posts\/25174\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/media\/40571"}],"wp:attachment":[{"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/media?parent=25174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/categories?post=25174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/eonmeet.com\/pol\/wp-json\/wp\/v2\/tags?post=25174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}