LastPass, kullan\u0131c\u0131lar\u0131n\u0131 ilgilendiren yeni bir g\u00fcvenlik olay\u0131yla yeniden g\u00fcndeme geldi. Bu kez ya\u015fanan veri ihlali bu sefer \u015firketin do\u011frudan sistemlerinden de\u011fil \u00fc\u00e7\u00fcnc\u00fc taraf i\u015f orta\u011f\u0131 Klue \u00fczerinden ger\u00e7ekle\u015fti.<\/p>\n\n\n\n
LastPass, olaydan etkilenen kullan\u0131c\u0131lara e-posta yoluyla bilgilendirme g\u00f6nderip durumu a\u00e7\u0131k \u015fekilde payla\u015fmaya ba\u015flad\u0131. \u015eirket, yap\u0131lan a\u00e7\u0131klamalarda parola kasalar\u0131n\u0131n bu ihlalden etkilenmedi\u011fini \u00f6zellikle belirtti.<\/p>\n\n\n\n
Ya\u015fanan geli\u015fme, platformun ge\u00e7mi\u015fteki g\u00fcvenlik tart\u0131\u015fmalar\u0131n\u0131 yeniden g\u00fcndeme ta\u015f\u0131rken kullan\u0131c\u0131lar aras\u0131nda da endi\u015feye neden oldu.<\/p>\n\n\n\n
Klue isimli pazar ara\u015ft\u0131rma firmas\u0131nda ya\u015fanan g\u00fcvenlik ihlali, baz\u0131 m\u00fc\u015fteri verileri ile destek ve sat\u0131\u015f kay\u0131tlar\u0131n\u0131n yetkisiz eri\u015fime maruz kalmas\u0131na neden oldu. LastPass taraf\u0131ndan yap\u0131lan a\u00e7\u0131klamada, s\u0131zd\u0131r\u0131lan verilerin b\u00fcy\u00fck \u00f6l\u00e7\u00fcde i\u015f s\u00fcre\u00e7lerine ait ileti\u015fim ve m\u00fc\u015fteri ili\u015fkileri bilgileriyle s\u0131n\u0131rl\u0131 oldu\u011funu s\u00f6yledi. Eri\u015fime a\u00e7\u0131lan veriler aras\u0131nda m\u00fc\u015fteri ad ve soyadlar\u0131, telefon numaralar\u0131, e-posta adresleri ve fiziksel adresler bulunurken destek talepleri ile sat\u0131\u015fa ili\u015fkin kay\u0131tlar\u0131n da etkilenmi\u015f olabilece\u011fi aktar\u0131ld\u0131. Olay\u0131n tespit edilmesinin ard\u0131ndan LastPass, Klue sistemlerine ba\u011fl\u0131 \u00e7al\u0131\u015fan eri\u015fimlerini derhal kapatt\u0131\u011f\u0131n\u0131 ve risk ta\u015f\u0131yan API anahtarlar\u0131n\u0131 g\u00fcncelledi.<\/p>\n\n\n\n
\u015eirket ayr\u0131ca hem ilgili kolluk kuvvetlerini bilgilendirdi\u011fini hem de Klue ve Salesforce ile birlikte detayl\u0131 bir inceleme s\u00fcreci ba\u015flatt\u0131\u011f\u0131n\u0131 a\u00e7\u0131klad\u0131. Klue\u2019nun Salesforce ve Gong gibi platformlarla birlikte \u00e7al\u0131\u015ft\u0131\u011f\u0131 da belirtiliyor.<\/p>\n\n\n\n
Kullan\u0131c\u0131lara y\u00f6nelik uyar\u0131larda ise olas\u0131 kimlik av\u0131 giri\u015fimleri ve sosyal m\u00fchendislik sald\u0131r\u0131lar\u0131na kar\u015f\u0131 dikkatli olunmas\u0131 gerekti\u011fi vurguland\u0131. LastPass, sald\u0131r\u0131yla ili\u015fkili oldu\u011fu tespit edilen baz\u0131 IP adresleri ve e-posta alan adlar\u0131n\u0131 payla\u015farak sistemlerde ek g\u00fcvenlik kontrolleri yap\u0131lmas\u0131n\u0131 tavsiye etti.<\/p>\n\n\n\n
Lastpass’in ya\u015fad\u0131\u011f\u0131 son olay, \u015firketin g\u00fcvenlik ge\u00e7mi\u015findeki ilk olay de\u011fil. Platform daha \u00f6nce de bu konulardan g\u00fcndeme gelmi\u015fti. 2015 y\u0131l\u0131nda ya\u015fanan bir sald\u0131r\u0131da, kullan\u0131c\u0131lara ait epostalar ve parolalar kimlik do\u011frulama \u00f6zetlerinin ele ge\u00e7irildi\u011fi s\u00f6ylenmi\u015fti. Bu olay \u015firket i\u00e7in bir k\u0131r\u0131lma noktas\u0131 olmu\u015ftu. 2022 y\u0131l\u0131nda ise daha geni\u015f bir ihlal ya\u015fand\u0131. Bir geli\u015ftirici hesab\u0131n ele ge\u00e7irilmesiyle sistemin kaynak kodlar\u0131 ve teknik detaylar\u0131na ula\u015f\u0131ld\u0131. \u015eifrelenmi\u015f parola kasalar\u0131yla birlikte isimler, fatura bilgileri ve ileti\u015fim bilgileri gibi verilerin de risk alt\u0131nda oldu\u011fu ortaya \u00e7\u0131kt\u0131. <\/p>\n","protected":false},"excerpt":{"rendered":"
LastPass, kullan\u0131c\u0131lar\u0131n\u0131 ilgilendiren yeni bir g\u00fcvenlik olay\u0131yla yeniden g\u00fcndeme geldi. Bu kez ya\u015fanan veri ihlali bu sefer \u015firketin do\u011frudan sistemlerinden de\u011fil \u00fc\u00e7\u00fcnc\u00fc taraf i\u015f orta\u011f\u0131 Klue \u00fczerinden ger\u00e7ekle\u015fti. LastPass, olaydan etkilenen kullan\u0131c\u0131lara e-posta yoluyla bilgilendirme g\u00f6nderip durumu a\u00e7\u0131k \u015fekilde payla\u015fmaya ba\u015flad\u0131. \u015eirket, yap\u0131lan a\u00e7\u0131klamalarda parola kasalar\u0131n\u0131n bu ihlalden etkilenmedi\u011fini \u00f6zellikle belirtti. Ya\u015fanan geli\u015fme, platformun ge\u00e7mi\u015fteki […]<\/p>\n","protected":false},"author":95,"featured_media":85775,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[54],"tags":[6565],"class_list":["post-85772","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-internet","tag-lastpass"],"_links":{"self":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts\/85772","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/users\/95"}],"replies":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/comments?post=85772"}],"version-history":[{"count":1,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts\/85772\/revisions"}],"predecessor-version":[{"id":85778,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/posts\/85772\/revisions\/85778"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/media\/85775"}],"wp:attachment":[{"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/media?parent=85772"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/categories?post=85772"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.indir.com\/haber\/wp-json\/wp\/v2\/tags?post=85772"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}