{"id":12526,"date":"2023-06-19T06:00:00","date_gmt":"2023-06-19T03:00:00","guid":{"rendered":"https:\/\/rockvell.com\/?p=12526"},"modified":"2023-06-19T13:31:10","modified_gmt":"2023-06-19T10:31:10","slug":"abun%c9%99lik-ziyanvericisi","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=12526","title":{"rendered":"Abun\u0259lik ziyanvericisi"},"content":{"rendered":"\n<p class=\"has-medium-font-size\"><strong>Abun\u0259lik ziyanvericisi: Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri xidm\u0259t modelin\u0259 \u0259sas\u0259n kibercinay\u0259tkarlar t\u0259r\u0259find\u0259n \u0259n \u00e7ox t\u0259l\u0259b olunan z\u0259r\u0259rli proqram n\u00f6vl\u0259rini a\u00e7\u0131qlay\u0131r<\/strong><\/p>\n\n\n\n<p>T\u0259cav\u00fczkarlar\u0131n \u201cZ\u0259r\u0259rli proqram bir xidm\u0259t kimi\u201d (MaaS, Malware-as-a-Service) modelind\u0259n istifad\u0259 ed\u0259r\u0259k yayd\u0131\u011f\u0131 z\u0259r\u0259rli proqramlar\u0131n yar\u0131s\u0131ndan \u00e7oxu (58%) fidy\u0259 proqramlar\u0131d\u0131r (ransomware). M\u0259lumat o\u011furlu\u011fu proqramlar\u0131n\u0131n (infostealer) pay\u0131 24%, botnetl\u0259r, y\u00fckl\u0259yicil\u0259r v\u0259 arxa qap\u0131lar\u0131nk\u0131 is\u0259 18% t\u0259\u015fkil edib. Bu, Digital Footprint Intelligence komandas\u0131 m\u00fct\u0259x\u0259ssisl\u0259rinin 97 z\u0259r\u0259rli proqram ail\u0259sini t\u0259hlil etdiyi Kaspersky ara\u015fd\u0131rmas\u0131n\u0131n* n\u0259tic\u0259l\u0259ridir.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/rockvell.com\/wp-content\/uploads\/2023\/06\/wedf.png\" alt=\"\" class=\"wp-image-12527\" width=\"472\" height=\"172\" srcset=\"https:\/\/rockvell.com\/wp-content\/uploads\/2023\/06\/wedf.png 936w, https:\/\/rockvell.com\/wp-content\/uploads\/2023\/06\/wedf-300x110.png 300w, https:\/\/rockvell.com\/wp-content\/uploads\/2023\/06\/wedf-768x281.png 768w, https:\/\/rockvell.com\/wp-content\/uploads\/2023\/06\/wedf-360x132.png 360w\" sizes=\"(max-width: 472px) 100vw, 472px\" \/><\/figure><\/div>\n\n\n<p><strong>Fidy<\/strong><strong>\u0259 <\/strong><strong>proqram<\/strong><strong>\u0131<\/strong><strong>n<\/strong><strong>\u0131<\/strong><strong>n<\/strong><strong> &#8220;<\/strong><strong>populyarl<\/strong><strong>\u0131\u011f\u0131&#8221;.<\/strong> Bu proqrama t\u0259l\u0259bat onun dig\u0259r z\u0259r\u0259rli proqram n\u00f6vl\u0259ri il\u0259 m\u00fcqayis\u0259d\u0259 q\u0131sa m\u00fcdd\u0259t \u0259rzind\u0259 daha y\u00fcks\u0259k g\u0259lir qazand\u0131rmaq qabiliyy\u0259ti il\u0259 izah oluna bil\u0259r. T\u0259cav\u00fczkarlar ransomware-as-a-service (RaaS) xidm\u0259tin\u0259 pulsuz \u201cabun\u0259\u201d ola bil\u0259rl\u0259r. Onlar xidm\u0259t haqq\u0131n\u0131 h\u00fccumdan sonra \u00f6d\u0259yirl\u0259r. Xidm\u0259tin d\u0259y\u0259ri qurban\u0131n\u0131n \u00f6d\u0259diyi fidy\u0259nin faizi il\u0259 m\u00fc\u0259yy\u0259n edilir, ad\u0259t\u0259n h\u0259r \u0259m\u0259liyyat\u0131n 10%-d\u0259n 40%-\u0259 q\u0259d\u0259rini t\u0259\u015fkil edir. Ancaq bel\u0259 bir t\u0259r\u0259fda\u015f proqram\u0131na qo\u015fulmaq el\u0259 d\u0259 asan deyil.<\/p>\n\n\n\n<p><strong>M\u0259lumat o\u011furlu\u011f<\/strong><strong>u<\/strong><strong> <\/strong><strong>proqramlar\u0131 (infostealer)<\/strong> loginl\u0259r, \u015fifr\u0259l\u0259r, bank kart\u0131 m\u0259lumatlar\u0131, hesablar, kriptovalyuta pul kis\u0259l\u0259ri v\u0259 brauzer tarix\u00e7\u0259si daxil olmaqla, m\u0259lumatlar\u0131 o\u011furlamaq \u00fc\u00e7\u00fcn n\u0259z\u0259rd\u0259 tutulan z\u0259r\u0259rli proqramlard\u0131r. Onlar\u0131n xidm\u0259tl\u0259rind\u0259n istifad\u0259 etm\u0259k \u00fc\u00e7\u00fcn abun\u0259lik haqq\u0131 model\u0259 uy\u011fun olaraq \u00f6d\u0259nilir. Onlar\u0131n qiym\u0259ti ayda 100 dollar** il\u0259 300 dollar*** aras\u0131nda d\u0259yi\u015fir. M\u0259s\u0259l\u0259n, 2023-c\u00fc ilin fevral ay\u0131n\u0131n \u0259vv\u0259lind\u0259 istehsal\u0131 dayand\u0131r\u0131lan Raccoon Stealer ayl\u0131q 275 dollar v\u0259 ya h\u0259ft\u0259lik 150 dollar qar\u015f\u0131l\u0131\u011f\u0131nda al\u0131na bil\u0259r. Onun r\u0259qibi RedLine ayl\u0131q 150 dollara sat\u0131r. H\u0259m\u00e7inin 900 dollar qar\u015f\u0131l\u0131\u011f\u0131nda \u00f6m\u00fcrl\u00fck istifad\u0259 lisenziyas\u0131 \u0259ld\u0259 etm\u0259k m\u00fcmk\u00fcnd\u00fcr. Bununla bel\u0259, t\u0259cav\u00fczkarlar h\u00fccumlar\u0131n \u00fcmumi d\u0259y\u0259rini art\u0131ran \u0259lav\u0259 x\u0259rcl\u0259rl\u0259 \u00fczl\u0259\u015f\u0259 bil\u0259rl\u0259r.<\/p>\n\n\n\n<p><strong>Botnetl\u0259r, y\u00fckl\u0259yicil\u0259r v\u0259 arxa qap\u0131lar.<\/strong> T\u0259dqiqat \u00fc\u00e7\u00fcn ekspertl\u0259r bu t\u0259hdidl\u0259ri bir qrupda birl\u0259\u015fdiribl\u0259r, \u00e7\u00fcnki onlar\u0131n m\u0259qs\u0259di \u00e7ox vaxt eyni olur &#8211; qurban\u0131n cihaz\u0131na dig\u0259r z\u0259r\u0259rli proqramlar\u0131 y\u00fckl\u0259m\u0259k v\u0259 i\u015f\u0259 salmaq. MaaS modelin\u0259 uy\u011fun olaraq yay\u0131lan proqramlar\u0131n m\u00fc\u0259yy\u0259n n\u00f6vl\u0259ri daha m\u00fcr\u0259kk\u0259b kod, b\u00fct\u00fcn infrastrukturun \u201coperator\u201d t\u0259r\u0259find\u0259n t\u0259min edilm\u0259si v\u0259 t\u0259r\u0259fda\u015flar \u00fc\u00e7\u00fcn m\u0259hdud yer say\u0131 s\u0259b\u0259bind\u0259n m\u0259lumat o\u011furlu\u011fu proqramlar\u0131ndan qat-qat bahad\u0131r. Bununla bel\u0259, onlar, m\u0259s\u0259l\u0259n, standart versiya \u00fc\u00e7\u00fcn ayda 4900 dollara ba\u015fa g\u0259l\u0259n Matanbuchus y\u00fckl\u0259yicisi kimi, t\u0259cav\u00fczkarlar\u0131n\u0131n daha uzun m\u00fcdd\u0259t a\u015fkarlanmamas\u0131na imkan verir.<\/p>\n\n\n\n<p><strong>MaaS nec\u0259 i\u015fl\u0259yir.<\/strong> Z\u0259r\u0259rli proqram bir xidm\u0259t kimi (MaaS) kiberh\u00fccumlar h\u0259yata ke\u00e7irm\u0259k \u00fc\u00e7\u00fcn proqram\u0131 icar\u0259y\u0259 g\u00f6t\u00fcr\u0259n qeyri-qanuni biznes modelidir. Bu c\u00fcr f\u0259aliyy\u0259tl\u0259rl\u0259 m\u0259\u015f\u011ful olan z\u0259r\u0259rli proqram sahibl\u0259ri \u201coperatorlar\u201d, onlar\u0131n m\u00fc\u015ft\u0259ril\u0259ri is\u0259 \u201ct\u0259r\u0259fda\u015flar\u201d adlan\u0131r. MaaS modeli \u00fcz\u0259rind\u0259 i\u015fi t\u0259\u015fkil etm\u0259k \u00fc\u00e7\u00fcn t\u0259cav\u00fczkarlar k\u00f6lg\u0259 platformalar\u0131ndan v\u0259 ani messencerl\u0259rd\u0259n istifad\u0259 ed\u0259 bil\u0259rl\u0259r.<\/p>\n\n\n\n<p>\u201cZ\u0259r\u0259rli proqramlar v\u0259 o\u011furlanm\u0131\u015f m\u0259lumatlar daxil olmaqla, t\u0259cav\u00fczkarlar qaranl\u0131q internetd\u0259 qanunsuz mal v\u0259 xidm\u0259tl\u0259ri aktiv \u015f\u0259kild\u0259 sat\u0131\u015fa \u00e7\u0131xar\u0131rlar. K\u00f6lg\u0259 bazar\u0131n\u0131n nec\u0259 i\u015fl\u0259diyini ba\u015fa d\u00fc\u015fm\u0259kl\u0259 \u015firk\u0259tl\u0259r potensial t\u0259cav\u00fczkarlar\u0131n \u00fcsullar\u0131 v\u0259 motivl\u0259ri haqq\u0131nda fikir formala\u015fd\u0131ra bil\u0259rl\u0259r. Bu m\u0259lumatlar\u0131n k\u00f6m\u0259yil\u0259 biz t\u0259cav\u00fczkarlar\u0131n f\u0259aliyy\u0259tini a\u015fkarlamaq v\u0259 monitorinq\u0259 c\u0259lb etm\u0259k, m\u0259lumat ax\u0131nlar\u0131n\u0131, h\u0259m\u00e7inin yaranan t\u0259hdidl\u0259ri v\u0259 tendensiyalar\u0131 izl\u0259m\u0259kl\u0259 kiberh\u00fccumlar\u0131n qar\u015f\u0131s\u0131n\u0131 almaq \u00fc\u00e7\u00fcn daha effektiv strategiyalar haz\u0131rlama\u011fa k\u00f6m\u0259k ed\u0259 bil\u0259rik\u201d, &#8211; dey\u0259 Kaspersky Digital Footprint Intelligence analitiki Aleksandr Zabrovski qeyd edir.<\/p>\n\n\n\n<p>\u015eirk\u0259tl\u0259ri kibert\u0259hl\u00fck\u0259l\u0259rd\u0259n qorumaq \u00fc\u00e7\u00fcn Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri t\u00f6vsiy\u0259 edir:<\/p>\n\n\n\n<p>\u2022 t\u0259cav\u00fczkarlar\u0131n korporativ \u015f\u0259b\u0259k\u0259y\u0259 z\u0259iflikl\u0259r vasit\u0259sil\u0259 daxil olmas\u0131n\u0131 \u0259ng\u0259ll\u0259m\u0259k \u00fc\u00e7\u00fcn istifad\u0259 olunan b\u00fct\u00fcn proqramlar\u0131 m\u00fct\u0259madi olaraq yenil\u0259yin;<\/p>\n\n\n\n<p>\u2022 t\u0259cav\u00fczkarlar\u0131n \u0259n son \u00fcsullar\u0131 v\u0259 taktikalar\u0131ndan x\u0259b\u0259rdar olmaq \u00fc\u00e7\u00fcn <a href=\"https:\/\/www.kaspersky.ru\/enterprise-security\/threat-intelligence\">Threat Intelligence<\/a> xidm\u0259tind\u0259n istifad\u0259 edin;<\/p>\n\n\n\n<p>\u2022 <a href=\"https:\/\/media.kaspersky.com\/ru\/business-security\/enterprise\/kaspersky-digital-footprint-intelligence-datasheet.pdf\">Kaspersky Digital Footprint Intelligence<\/a> xidm\u0259tind\u0259n istifad\u0259 edin. Bu, t\u0259cav\u00fczkarlar\u0131n \u015firk\u0259t resurslar\u0131 haqq\u0131nda n\u0259 bildiyini m\u00fc\u0259yy\u0259n etm\u0259y\u0259 v\u0259 onlar \u00fc\u00e7\u00fcn \u0259l\u00e7atan olan potensial h\u00fccum vektorlar\u0131n\u0131 tez a\u015fkar etm\u0259y\u0259 k\u00f6m\u0259k edir. H\u0259m\u00e7inin, m\u00fcmk\u00fcn kibert\u0259hl\u00fck\u0259l\u0259r bar\u0259d\u0259 m\u0259lumatl\u0131l\u0131\u011f\u0131 art\u0131rma\u011fa imkan verir ki, bunun n\u0259tic\u0259sind\u0259 siz m\u00fcdafi\u0259 imkanlar\u0131n\u0131 t\u0259nziml\u0259y\u0259 v\u0259 ya h\u00fccuma qar\u015f\u0131 vaxt\u0131nda m\u00fcbariz\u0259 aparmaq v\u0259 onu aradan qald\u0131rmaq \u00fc\u00e7\u00fcn t\u0259dbirl\u0259r g\u00f6r\u0259 bil\u0259rsiniz;<\/p>\n\n\n\n<p>\u2022 insident ba\u015f verdikd\u0259, cavab verm\u0259y\u0259 v\u0259 n\u0259tic\u0259l\u0259ri minimuma endirm\u0259y\u0259 k\u00f6m\u0259k ed\u0259c\u0259k, x\u00fcsus\u0259n d\u0259 t\u0259hl\u00fck\u0259y\u0259 m\u0259ruz qalm\u0131\u015f hostlar\u0131 m\u00fc\u0259yy\u0259nl\u0259\u015fdirm\u0259y\u0259 v\u0259 infrastrukturu g\u0259l\u0259c\u0259kd\u0259 ox\u015far h\u00fccumlardan qoruma\u011fa k\u00f6m\u0259k ed\u0259c\u0259k <a href=\"https:\/\/www.kaspersky.ru\/enterprise-security\/incident-response\">Kaspersky Incident Response<\/a> xidm\u0259tin\u0259 m\u00fcraci\u0259t edin.<\/p>\n\n\n\n<p><em>* <\/em><em>Kaspersky<\/em><em> <\/em><em>Digital<\/em><em> <\/em><em>Footprint<\/em><em> <\/em><em>Intelligence<\/em><em> <\/em><em>komandas<\/em><em>\u0131<\/em><em>n<\/em><em>\u0131<\/em><em>n<\/em><em> &#8220;<\/em><em>Malware-as-a-Service n\u0259d\u0259n <\/em><em>ibar<\/em><em>\u0259<\/em><em>tdir<\/em><em>&#8221; adl\u0131 <\/em><em>hesabat<\/em><em>\u0131.<\/em><em> <\/em><em>T<\/em><em>\u0259<\/em><em>hlil<\/em><em> <\/em><em>edil<\/em><em>\u0259<\/em><em>n<\/em><em> <\/em><em>z<\/em><em>\u0259<\/em><em>r<\/em><em>\u0259<\/em><em>rli<\/em><em> <\/em><em>proqram<\/em><em> 2015-2022-<\/em><em>ci<\/em><em> <\/em><em>ill<\/em><em>\u0259<\/em><em>r<\/em><em> <\/em><em>\u0259<\/em><em>rzind<\/em><em>\u0259 <\/em><em>k<\/em><em>\u00f6<\/em><em>lg<\/em><em>\u0259 <\/em><em>seqmentind<\/em><em>\u0259 <\/em><em>v<\/em><em>\u0259 <\/em><em>dig<\/em><em>\u0259<\/em><em>r<\/em><em> <\/em><em>resurslarda<\/em><em> <\/em><em>yay<\/em><em>\u0131<\/em><em>l<\/em><em>\u0131<\/em><em>b<\/em><em>.<\/em><\/p>\n\n\n\n<p><em>** <\/em><em>Burada<\/em><em> <\/em><em>v<\/em><em>\u0259 <\/em><em>bundan sonra<\/em><em> <\/em><em>s\u00f6hb\u0259t <\/em><em>AB<\/em><em>\u015e <\/em><em>dollar<\/em><em>\u0131<\/em><em>ndan<\/em><em> <\/em><em>s<\/em><em>\u00f6<\/em><em>hb<\/em><em>\u0259<\/em><em>t<\/em><em> <\/em><em>gedir<\/em><em>.<\/em><\/p>\n\n\n\n<p><em>*** <\/em><em>Burada v\u0259 <\/em><em>bundan<\/em><em> <\/em><em>sonra yay\u0131lan<\/em><em> <\/em><em>proqramlar<\/em><em>\u0131<\/em><em>n<\/em><em> qiym\u0259ti 2023-<\/em><em>c<\/em><em>\u00fc <\/em><em>ilin<\/em><em> <\/em><em>iyun ay\u0131 \u00fc\u00e7\u00fcn d\u0259 g\u00f6st\u0259rilir.<\/em><em><\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Abun\u0259lik ziyanvericisi: Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri xidm\u0259t modelin\u0259 \u0259sas\u0259n kibercinay\u0259tkarlar t\u0259r\u0259find\u0259n \u0259n \u00e7ox t\u0259l\u0259b olunan z\u0259r\u0259rli proqram n\u00f6vl\u0259rini a\u00e7\u0131qlay\u0131r T\u0259cav\u00fczkarlar\u0131n \u201cZ\u0259r\u0259rli proqram bir xidm\u0259t kimi\u201d (MaaS, Malware-as-a-Service) modelind\u0259n istifad\u0259 ed\u0259r\u0259k yayd\u0131\u011f\u0131 z\u0259r\u0259rli proqramlar\u0131n yar\u0131s\u0131ndan \u00e7oxu (58%) fidy\u0259&#8230;<\/p>\n","protected":false},"author":2,"featured_media":11072,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/12526"}],"collection":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=12526"}],"version-history":[{"count":1,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/12526\/revisions"}],"predecessor-version":[{"id":12528,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/12526\/revisions\/12528"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/media\/11072"}],"wp:attachment":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=12526"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=12526"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=12526"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}