H\u00fck\u00fcmetler taraf\u0131ndan kullan\u0131lan Android casus yaz\u0131l\u0131m\u0131 de\u015fifre oldu<\/a><\/p>\n\n\n\nCasus yaz\u0131l\u0131mlar baz\u0131 h\u00fck\u00fcmetler taraf\u0131ndan da destekleniyor<\/h2>\n\n\n\n
Security Research Group Lookout ilk bulgular\u0131nda casus yaz\u0131l\u0131mla ilgili detaylar\u0131 ortaya \u00e7\u0131kard\u0131. Lookout, RCS Labs’\u0131n Pegasus casus yaz\u0131l\u0131mlar\u0131n\u0131n arkas\u0131ndaki k\u00f6t\u00fc \u015f\u00f6hretli \u015firket olan NSO Group ile ayn\u0131 sekt\u00f6rde oldu\u011funu ve \u00e7e\u015fitli devlet kurumlar\u0131na ticari casus yaz\u0131l\u0131mlar satt\u0131\u011f\u0131n\u0131 iddia etti.<\/p>\n\n\n\n
Lookout’taki ara\u015ft\u0131rmac\u0131, Hermit’in zaten Kazak h\u00fck\u00fcmeti ve \u0130talyan makamlar\u0131 taraf\u0131ndan kullan\u0131ld\u0131\u011f\u0131na inand\u0131\u011f\u0131n\u0131 a\u00e7\u0131klam\u0131\u015ft\u0131. Google, bu bulgulara dayanarak her iki \u00fclkedeki kurbanlar\u0131 da belirledi. \u015eirket a\u00e7\u0131klamas\u0131nda etkilenen kullan\u0131c\u0131lar\u0131 da bilgilendirece\u011fini s\u00f6yledi.<\/p>\n\n\n\n
Casus yaz\u0131l\u0131m, kendini me\u015fru bir kaynak olarak gizledi\u011finden tam anlam\u0131yla tespit edilemiyor. Buda kullan\u0131c\u0131lar i\u00e7in b\u00fcy\u00fck bir risk ta\u015f\u0131d\u0131\u011f\u0131 anlam\u0131na geliyor. Genellikle bir mobil operat\u00f6r veya mesajla\u015fma uygulamas\u0131 \u015feklinde gelen uygulama, hem Android hem de iPhone’a cihazlar\u0131na s\u0131zabiliyor. Google’\u0131n siber g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131, baz\u0131 sald\u0131rganlar\u0131n planlar\u0131n\u0131 ilerletmek i\u00e7in kurban\u0131n mobil verilerini engellemek i\u00e7in \u0130SS gibi davrand\u0131\u011f\u0131n\u0131 ortaya \u00e7\u0131kard\u0131.<\/p>\n\n\n\n
Casus yaz\u0131l\u0131m, internete yeniden ba\u011flanmak i\u00e7in kendi programlar\u0131n\u0131 indirmelerini ister ve SMS yoluyla kurban\u0131n cep telefonu operat\u00f6r\u00fcn\u00fcn kimli\u011fine b\u00fcr\u00fcn\u00fcr. Bu y\u00f6ntemle sald\u0131rganlar, hacklenen yaz\u0131l\u0131m\u0131 bir mesajla\u015fma uygulamas\u0131 olarak sunarak telefona eri\u015fim sa\u011flamay\u0131 ba\u015fard\u0131\u011f\u0131 ortaya \u00e7\u0131kar\u0131ld\u0131. <\/p>\n\n\n\n
Daha \u00f6nce Lookout ve TAG ara\u015ft\u0131rmac\u0131lar\u0131, Hermit i\u00e7eren uygulamalar\u0131n hi\u00e7bir zaman Google Play veya Apple App Store’da bulunmad\u0131\u011f\u0131n\u0131 y\u00f6n\u00fcnde bir a\u00e7\u0131klama yapm\u0131\u015f ve casus yaz\u0131l\u0131mlar\u0131n h\u00fck\u00fcmetler taraf\u0131ndan desteklendi\u011fine dair ilk iddialar\u0131 ortaya atm\u0131\u015ft\u0131. Ard\u0131ndan konuyu ele alan Google bu iddialar\u0131n do\u011frulu\u011funu ortaya \u00e7\u0131kard\u0131. Sald\u0131rganlar\u0131n Apple Developer Enterprise Program\u0131na kaydolarak vir\u00fcsl\u00fc uygulamalar\u0131n\u0131 iOS’a da\u011f\u0131tabilecekleri ke\u015ffedildi.<\/p>\n\n\n\n
B\u00f6ylece, casus yaz\u0131l\u0131m\u0131n, standart App Store tarama s\u00fcrecini atlamak ve “bir iOS ayg\u0131t\u0131ndaki t\u00fcm iOS kod imzalama gereksinimlerini kar\u015f\u0131layan” bir sertifika alabildi\u011fi saptand\u0131. Bu geli\u015fmenin ard\u0131ndan Apple, bu yaz\u0131l\u0131mla ili\u015fkili t\u00fcm hesaplar\u0131n ve sertifikalar\u0131n iptal edildi\u011fini duyurdu.<\/p>\n\n\n\n
Google, etkilenen kullan\u0131c\u0131lar\u0131 bilgilendirmenin yan\u0131 s\u0131ra t\u00fcm kullan\u0131c\u0131lar\u0131n Google Play Protect’i g\u00fcncellemesini \u00f6nerdi.<\/p>\n","protected":false},"excerpt":{"rendered":"
Google taraf\u0131ndan yay\u0131mlanan yeni bir ara\u015ft\u0131rmaya g\u00f6re geli\u015fmi\u015f casus yaz\u0131l\u0131mlar t\u00fcm ak\u0131ll\u0131 telefonlar i\u00e7in tehdit olu\u015fturuyor. Google Tehdit \u0130stihbarat Grubu (TAG) taraf\u0131ndan yay\u0131nlanan bir ara\u015ft\u0131rmaya g\u00f6re, geli\u015fmi\u015f bir casusluk kampanyas\u0131, kullan\u0131c\u0131lar\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 uygulamalar indirmeleri i\u00e7in kand\u0131rmak i\u00e7in \u0130SS’leri kullan\u0131r. Casus yaz\u0131l\u0131m Hermit, \u0130talyan casus yaz\u0131l\u0131m \u015firketi RCS Labs ile ili\u015fkilidir. Hat\u0131rlarsan\u0131z ge\u00e7ti\u011fimiz hafta bir […]<\/p>\n","protected":false},"author":10,"featured_media":26555,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[5297],"class_list":["post-26549","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji","tag-casus-yazilim-hem-android-hem-ios-kullanicilarini-etkiliyor"],"_links":{"self":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts\/26549","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/comments?post=26549"}],"version-history":[{"count":0,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts\/26549\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/media\/26555"}],"wp:attachment":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/media?parent=26549"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/categories?post=26549"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/tags?post=26549"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}