{"id":19569,"date":"2023-12-27T02:00:00","date_gmt":"2023-12-26T23:00:00","guid":{"rendered":"https:\/\/rockvell.com\/?p=19569"},"modified":"2023-12-27T08:33:07","modified_gmt":"2023-12-27T05:33:07","slug":"dunyada-h%c9%99r-onuncu-sirk%c9%99t-kolg%c9%99-it-s%c9%99b%c9%99bind%c9%99n-kiberinsidentl%c9%99rl%c9%99-uzl%c9%99sib","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=19569","title":{"rendered":"D\u00fcnyada h\u0259r onuncu \u015firk\u0259t k\u00f6lg\u0259 \u0130T s\u0259b\u0259bind\u0259n kiberinsidentl\u0259rl\u0259 \u00fczl\u0259\u015fib"},"content":{"rendered":"\n

\u201cKaspersky\u201d: d\u00fcnyada h\u0259r onuncu \u015firk\u0259t k\u00f6lg\u0259 \u0130T s\u0259b\u0259bind\u0259n kiberinsidentl\u0259rl\u0259 \u00fczl\u0259\u015fib<\/strong><\/p>\n\n\n\n

\u015eirk\u0259tl\u0259r \u0259m\u0259kda\u015flar\u0131n k\u00f6lg\u0259 \u0130T-d\u0259n – i\u015f \u00fc\u00e7\u00fcn r\u0259smi icaz\u0259si olmayan proqramlardan, cihazlardan v\u0259 dig\u0259r r\u0259q\u0259msal al\u0259tl\u0259rd\u0259n istifad\u0259 etm\u0259si s\u0259b\u0259bind\u0259n kiberinsident riski il\u0259 \u00fczl\u0259\u015firl\u0259r. Uzaqdan i\u015fl\u0259m\u0259k format\u0131n\u0131n populyarla\u015fmas\u0131 fonunda problem daha da d\u0259rinl\u0259\u015fib. \u201cKaspersky\u201dnin ara\u015fd\u0131rmas\u0131na<\/a> g\u00f6r\u0259, son iki il \u0259rzind\u0259 d\u00fcnyada \u015firk\u0259tl\u0259rin 77%-i kiberinsidentl\u0259rd\u0259n \u0259ziyy\u0259t \u00e7\u0259kib, hallar\u0131n 11%-i \u015firk\u0259t t\u0259r\u0259find\u0259n icaz\u0259 verilm\u0259y\u0259n r\u0259q\u0259msal al\u0259tl\u0259rin istifad\u0259si n\u0259tic\u0259sind\u0259 ba\u015f verib. K\u00f6lg\u0259 \u0130T il\u0259 ba\u011fl\u0131 v\u0259ziyy\u0259t bir \u00e7ox t\u0259\u015fkilatlar\u0131n pozuntulara g\u00f6r\u0259 i\u015f\u00e7il\u0259r \u00fc\u00e7\u00fcn m\u0259suliyy\u0259t m\u00fc\u0259yy\u0259nl\u0259\u015fdirm\u0259m\u0259si s\u0259b\u0259bind\u0259n daha da m\u00fcr\u0259kk\u0259bl\u0259\u015fir.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

K\u00f6lg\u0259 \u0130T-nin t\u0259hl\u00fck\u0259l\u0259ri<\/strong>. K\u00f6Ig\u0259 IT proqramlar, cihazlar, ictimai bulud xidm\u0259tl\u0259ri v\u0259 \u015firk\u0259t daxilind\u0259 i\u015fl\u0259m\u0259k \u00fc\u00e7\u00fcn r\u0259smi icaz\u0259si olmayan dig\u0259r r\u0259q\u0259msal al\u0259tl\u0259rin \u00fcmumil\u0259\u015fdirilmi\u015f ad\u0131d\u0131r. Onlar\u0131n istifad\u0259si \u0130T departamentl\u0259ri v\u0259 informasiya t\u0259hl\u00fck\u0259sizliyi xidm\u0259tl\u0259ri t\u0259r\u0259find\u0259n idar\u0259 olunmur v\u0259 t\u0259hl\u00fck\u0259sizlik siyas\u0259tl\u0259ri il\u0259 uzla\u015fm\u0131r. Bu, biznes \u00fc\u00e7\u00fcn m\u0259nfi n\u0259tic\u0259l\u0259r\u0259 s\u0259b\u0259b ola bil\u0259r. K\u00f6lg\u0259 \u0130T-nin istifad\u0259sind\u0259n \u0259n \u00e7ox z\u0259r\u0259r \u00e7\u0259k\u0259n \u0130T s\u0259nayesidir –  2022 v\u0259 2023-c\u00fc ill\u0259rd\u0259 bununla ba\u011fl\u0131 kiberinsidentl\u0259rin 16%-i onlar\u0131n pay\u0131na d\u00fc\u015f\u00fcb. H\u0259yati vacib infrastruktur obyektl\u0259ri, n\u0259qliyyat v\u0259 logistika \u015firk\u0259tl\u0259ri d\u0259 (h\u0259r biri 13% olmaqla) bu probleml\u0259 \u00fczl\u0259\u015firl\u0259r.<\/p>\n\n\n\n

K\u00f6lg\u0259 \u0130T-nin t\u0259hl\u00fck\u0259l\u0259rini bu yax\u0131nlarda \u201cOkta\u201dn\u0131n ba\u015f\u0131na g\u0259l\u0259n hadis\u0259<\/a> t\u0259sdiql\u0259yir. \u015eirk\u0259tin \u0259m\u0259kda\u015f\u0131 i\u015f cihaz\u0131nda \u015f\u0259xsi \u201cGoogle\u201d hesab\u0131ndan istifad\u0259 edib v\u0259 n\u0259tic\u0259d\u0259 t\u0259cav\u00fczkarlar m\u00fc\u015ft\u0259ri d\u0259st\u0259yi sistemin\u0259 icaz\u0259siz giri\u015f \u0259ld\u0259 ed\u0259 bilibl\u0259r. Onlar sonradan h\u00fccumlar \u00fc\u00e7\u00fcn istifad\u0259 oluna bil\u0259n sessiya tokenl\u0259rinin yer ald\u0131\u011f\u0131 fayllar\u0131 \u0259l\u0259 ke\u00e7ir\u0259 bilibl\u0259r. \u201cOkta\u201dn\u0131n s\u00f6zl\u0259rin\u0259 g\u00f6r\u0259<\/a>, hadis\u0259 20 g\u00fcn davam edib v\u0259 \u015firk\u0259tin 134 m\u00fc\u015ft\u0259risin\u0259 t\u0259sir edib.<\/p>\n\n\n\n

Nec\u0259 a\u015fkar etm\u0259k olar<\/strong>. K\u00f6lg\u0259 IT i\u015f\u00e7il\u0259rin i\u015f komp\u00fcterl\u0259rind\u0259, USB da\u015f\u0131y\u0131c\u0131lar\u0131nda, mobil telefonlar\u0131nda, noutbuklar\u0131nda v\u0259 dig\u0259r cihazlarda qura\u015fd\u0131r\u0131lm\u0131\u015f icaz\u0259siz proqramlar ola bil\u0259r. Ancaq daha az \u00fczd\u0259 olan variantlar da var. M\u0259s\u0259l\u0259n, i\u015f\u00e7il\u0259rd\u0259n biri \u0130T infrastrukturunu t\u0259kmill\u0259\u015fdirdikd\u0259n v\u0259 ya yenid\u0259n t\u0259\u015fkil etdikd\u0259n sonra qalan k\u00f6hn\u0259 avadanl\u0131qdan istifad\u0259 ed\u0259 bil\u0259r. Zamanla bu cihazda t\u0259cav\u00fczkarlar\u0131n \u015firk\u0259tin daxili sistemin\u0259 n\u00fcfuz etm\u0259sin\u0259 imkan ver\u0259c\u0259k z\u0259iflikl\u0259r toplan\u0131r.<\/p>\n\n\n\n

Bundan \u0259lav\u0259, \u0130T m\u00fct\u0259x\u0259ssisl\u0259ri tez-tez komanda i\u015fini optimalla\u015fd\u0131rmaq, daha s\u00fcr\u0259tli v\u0259 daha s\u0259m\u0259r\u0259li etm\u0259k v\u0259 daxili probleml\u0259ri h\u0259ll etm\u0259k \u00fc\u00e7\u00fcn proqramlar yarad\u0131rlar. Bununla bel\u0259, onlar he\u00e7 d\u0259 h\u0259mi\u015f\u0259 t\u0259hl\u00fck\u0259sizlik xidm\u0259tind\u0259n bu proqramlardan istifad\u0259 \u00fc\u00e7\u00fcn icaz\u0259 t\u0259l\u0259b etmirl\u0259r ki, bu da ciddi n\u0259tic\u0259l\u0259r\u0259 g\u0259tirib \u00e7\u0131xara bil\u0259r.<\/p>\n\n\n\n

\u201c\u0130T t\u0259r\u0259find\u0259n t\u0259sdiq edilm\u0259y\u0259n proqramlar, cihazlar v\u0259 bulud xidm\u0259tl\u0259rind\u0259n istifad\u0259 ed\u0259n i\u015f\u00e7il\u0259r m\u0259s\u0259l\u0259ni bel\u0259 \u0259sasland\u0131r\u0131rlar: t\u0259rtibat\u00e7\u0131 etibarl\u0131d\u0131rsa, onlar\u0131n t\u0259hl\u00fck\u0259sizliyi t\u0259min oliunub. Bununla bel\u0259, \u00fc\u00e7\u00fcnc\u00fc t\u0259r\u0259f t\u0259chizat\u00e7\u0131lar\u0131 \u201cb\u00f6l\u00fc\u015fd\u00fcr\u00fclm\u00fc\u015f m\u0259suliyy\u0259t\u201d adlanan modeld\u0259n istifad\u0259 edirl\u0259r. Bu o dem\u0259kdir ki, \u201cRaz\u0131yam\u201d d\u00fcym\u0259sini klikl\u0259m\u0259kl\u0259, istifad\u0259\u00e7i proqram t\u0259minat\u0131n\u0131 m\u00fct\u0259madi olaraq yenil\u0259y\u0259c\u0259yini t\u0259sdiq edir v\u0259 onun istifad\u0259si il\u0259 ba\u011fl\u0131 insidentl\u0259r\u0259 (o c\u00fcml\u0259d\u0259n korporativ m\u0259lumatlar\u0131n s\u0131zmas\u0131) g\u00f6r\u0259 m\u0259suliyy\u0259t da\u015f\u0131y\u0131r. Buna g\u00f6r\u0259 d\u0259, \u015firk\u0259tl\u0259r k\u00f6lg\u0259 \u0130T-ni idar\u0259 etm\u0259y\u0259 imkan ver\u0259n vasit\u0259l\u0259r\u0259 ehtiyac duyurlar. \u201cKaspersky Security for Business<\/a>\u201d v\u0259 \u201cKaspersky Endpoint Security Cloud<\/a>\u201d h\u0259ll\u0259ri arzuolunmaz proqramlar\u0131n, vebsaytlar\u0131n v\u0259 cihazlar\u0131n istifad\u0259sini m\u0259hdudla\u015fd\u0131rmaqla bu i\u015fd\u0259 k\u00f6m\u0259y\u0259 \u00e7ata bil\u0259r. Bununla bel\u0259, informasiya t\u0259hl\u00fck\u0259sizliyi xidm\u0259tl\u0259ri bu c\u00fcr insidentl\u0259rin qar\u015f\u0131s\u0131n\u0131 almaq \u00fc\u00e7\u00fcn \u015firk\u0259tin daxili \u015f\u0259b\u0259k\u0259sini m\u00fct\u0259madi olaraq yoxlama\u011fa davam etm\u0259lidirl\u0259r\u201d, dey\u0259 \u201cKaspersky\u201dnin informasiya t\u0259hl\u00fck\u0259sizliyi \u015f\u00f6b\u0259sinin r\u0259hb\u0259ri Aleksey Vovk bildirir.<\/p>\n\n\n\n

K\u00f6lg\u0259 \u0130T-d\u0259n istifad\u0259 riskl\u0259rini azaltmaq \u00fc\u00e7\u00fcn \u201cKaspersky\u201d m\u00fct\u0259x\u0259ssisl\u0259ri t\u00f6vsiy\u0259 edirl\u0259r:<\/p>\n\n\n\n