{"id":24568,"date":"2024-06-04T01:00:00","date_gmt":"2024-06-03T22:00:00","guid":{"rendered":"https:\/\/rockvell.com\/?p=24568"},"modified":"2024-06-04T10:34:37","modified_gmt":"2024-06-04T07:34:37","slug":"2024-cu-ilin-yanvar-mart-aylari-%c9%99rzind%c9%99-az%c9%99rbaycanda-istifad%c9%99cil%c9%99rin-4937-i-kibert%c9%99hluk%c9%99l%c9%99rl%c9%99-uzl%c9%99sib","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=24568","title":{"rendered":"2024-c\u00fc ilin yanvar-mart aylar\u0131 \u0259rzind\u0259 Az\u0259rbaycanda istifad\u0259\u00e7il\u0259rin 49,37%-i kibert\u0259hl\u00fck\u0259l\u0259rl\u0259 \u00fczl\u0259\u015fib"},"content":{"rendered":"\n

2024-c\u00fc ilin yanvar-mart aylar\u0131 \u0259rzind\u0259 Az\u0259rbaycanda istifad\u0259\u00e7il\u0259rin 49,37%-i kibert\u0259hl\u00fck\u0259l\u0259rl\u0259 \u00fczl\u0259\u015fib<\/strong><\/p>\n\n\n\n

Kaspersky MDB \u00f6lk\u0259l\u0259rind\u0259 kibert\u0259hl\u00fck\u0259 m\u0259nz\u0259r\u0259si haqq\u0131nda geni\u015fmiqyasl\u0131 hesabat\u0131n\u0131 t\u0259qdim edib<\/em>.<\/p>\n\n\n\n

2024 v\u0259 2023-c\u00fc ill\u0259rin birinci r\u00fcb\u00fcnu \u0259hat\u0259 ed\u0259n \u201cMDB \u00f6lk\u0259l\u0259ri \u00fc\u00e7\u00fcn t\u0259hl\u00fck\u0259 m\u0259nz\u0259r\u0259si\u201d hesabat\u0131nda Kaspersky Cyber \u200b\u200b\u200b\u200bthreat Intelligence<\/a> komandas\u0131 cari t\u0259hdidl\u0259ri t\u0259svir edib, taktika, texnika v\u0259 h\u00fccum prosedurlar\u0131n\u0131n, h\u0259m\u00e7inin kiberriskl\u0259ri azaltmaq \u00fc\u00e7\u00fcn vasit\u0259l\u0259rin siyah\u0131s\u0131n\u0131 t\u0259rtib edib.<\/p>\n\n\n\n

Az\u0259rbaycanda 2024-c\u00fc ilin yanvar-mart aylar\u0131 \u0259rzind\u0259 istifad\u0259\u00e7il\u0259rin 49,37%-i kibert\u0259hl\u00fck\u0259l\u0259rl\u0259 \u00fczl\u0259\u015fib.<\/p>\n\n\n\n

Fi\u015finq h\u00fccumlar\u0131 \u0259n \u00e7ox bank m\u0259lumatlar\u0131na v\u0259 ya maliyy\u0259 institutlar\u0131 il\u0259 \u0259laq\u0259li dig\u0259r m\u0259xfi m\u0259lumatlara \u00e7\u0131x\u0131\u015f \u0259ld\u0259 etm\u0259k m\u0259qs\u0259dil\u0259 h\u0259yata ke\u00e7irilib.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

Fi\u015finq resursunda yerl\u0259\u015fdirilmi\u015f s\u0259hif\u0259 n\u00fcmun\u0259si <\/em><\/em><\/p>\n\n\n\n

Az\u0259rbaycanda \u201cTelegram\u201d messencerinin fi\u015finq v\u0259 sosial m\u00fch\u0259ndislik kontekstind\u0259 istifad\u0259si bu messencerin geni\u015f yay\u0131lmas\u0131 s\u0259b\u0259bind\u0259n getdikc\u0259 populyarla\u015f\u0131r. T\u0259cav\u00fczkarlar istifad\u0259\u00e7ini, guya bonus almaq \u00fc\u00e7\u00fcn \u201cTelegram\u201d \u00fcz\u0259rind\u0259n daxil olma\u011fa v\u0259 \u015f\u0259xsiyy\u0259tini t\u0259sdiql\u0259m\u0259y\u0259 d\u0259v\u0259t edirl\u0259r. Bel\u0259likl\u0259, istifad\u0259\u00e7inin Telegram hesab\u0131 m\u0259lumatlar\u0131 \u0259l\u0259 ke\u00e7irilir.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

Fi\u015finq resursunda yerl\u0259\u015fdirilmi\u015f s\u0259hif\u0259 n\u00fcmun\u0259si <\/em><\/em><\/p>\n\n\n\n

\u201c2024-c\u00fc ild\u0259 kibercinay\u0259tkarlar kiberh\u00fccumlar\u0131n effektivliyini art\u0131rmaq \u00fc\u00e7\u00fcn kompleks yana\u015fmalardan istifad\u0259 edirl\u0259r. Konkret bir \u015f\u0259xs\u0259 y\u00f6n\u0259lmi\u015f fi\u015finq cinay\u0259tkarlar\u0131n \u015f\u0259xsind\u0259 \u00fcnsiyy\u0259ti daha inand\u0131r\u0131c\u0131 edir v\u0259 onun a\u015fkarlanmas\u0131n\u0131 \u00e7\u0259tinl\u0259\u015fdirir. T\u0259\u015fkilatlar \u00fc\u00e7\u00fcn, x\u00fcsusil\u0259 Az\u0259rbaycan kimi \u00f6lk\u0259l\u0259r \u00fc\u00e7\u00fcn artan kibert\u0259hl\u00fck\u0259l\u0259r fonunda, insan riskl\u0259rini idar\u0259 etm\u0259k, m\u0259qs\u0259dy\u00f6nl\u00fc t\u0259hl\u00fck\u0259sizlik proqramlar\u0131 yaratmaq vacibdir\u201d, – dey\u0259 Kaspersky-nin Az\u0259rbaycandak\u0131 r\u0259smi n\u00fcmay\u0259nd\u0259si M\u00fc\u015fviq M\u0259mm\u0259dov qeyd edir.<\/p>\n\n\n\n

Hesabat\u0131n dig\u0259r n\u0259tic\u0259l\u0259ri<\/strong>. Son bir il yar\u0131m \u0259rzind\u0259 haktivizm (haker h\u00fccumlar\u0131) t\u0259hl\u00fck\u0259si g\u00fccl\u0259nm\u0259y\u0259 davam edib. T\u0259cav\u00fczkarlar a\u00e7\u0131q \u015f\u0259b\u0259k\u0259d\u0259 m\u00f6vcud olan h\u0259r hans\u0131 vasit\u0259l\u0259rd\u0259n istifad\u0259 ed\u0259r\u0259k s\u0259naye se\u00e7imi etm\u0259d\u0259n z\u0259if t\u0259hl\u00fck\u0259sizliyi olan t\u0259\u015fkilatlar\u0131 h\u0259d\u0259f al\u0131r. Eyni zamanda fidy\u0259 proqramlar\u0131 kimi casusluq v\u0259 maddi qazanc m\u0259qs\u0259di il\u0259 h\u00fccum ed\u0259n qruplar\u0131n f\u0259aliyy\u0259tl\u0259ri f\u0259alla\u015f\u0131r.<\/p>\n\n\n\n

T\u0259cav\u00fczkarlar ssenaril\u0259rini d\u0259yi\u015fm\u0259m\u0259yi v\u0259 kibert\u0259hl\u00fck\u0259sizlik bax\u0131m\u0131ndan \u0259n az haz\u0131rl\u0131ql\u0131 t\u0259\u015fkilatlara h\u00fccum etm\u0259yi \u00fcst\u00fcn tuturlar, m\u0259s\u0259l\u0259n, bir \u00e7ox t\u0259\u015fkilatlar t\u0259r\u0259find\u0259n istifad\u0259 edil\u0259n m\u0259hsullarda art\u0131q m\u0259lum v\u0259 \u00fcmumi sistem bo\u015fluqlar\u0131ndan istifad\u0259 edirl\u0259r.<\/p>\n\n\n\n

Korporativ \u015f\u0259b\u0259k\u0259l\u0259r\u0259 h\u00fccumlarda istifad\u0259 olunan bo\u015fluqlar<\/strong>. \u018fn f\u0259al \u015f\u0259kild\u0259 istifad\u0259 edil\u0259n CVE-l\u0259rin (\u0130T sistemind\u0259 m\u0259lum olan bo\u015fluqlar haqq\u0131nda m\u0259lumat bazas\u0131) yar\u0131dan \u00e7oxu son onilliyin sonunda qeyd\u0259 al\u0131n\u0131b. 2023-c\u00fc ild\u0259 v\u0259 2024-c\u00fc ilin birinci r\u00fcb\u00fcnd\u0259 \u0259n \u00e7ox yay\u0131lm\u0131\u015f bo\u015fluq \u201cApache Log4j\u201d kitabxanas\u0131nda kodun uzaqdan icras\u0131na imkan ver\u0259n \u201cCVE-2021-44228\u201d (Log4Shell) kritik bo\u015flu\u011fu olub. \u0130kinci yerd\u0259 \u201cMicrosoft Windows\u201d v\u0259 \u201cMicrosoft Windows Server\u201d sisteml\u0259rind\u0259 \u201cCVE-2019-0708\u201d (BlueKeep) bo\u015flu\u011fu q\u0259rarla\u015f\u0131b. Kodun uzaqdan icras\u0131na \u0259lav\u0259 olaraq, o, h\u0259m\u00e7inin h\u0259ssas m\u0259lumatlar\u0131 a\u00e7\u0131qlama\u011fa, imtiyazlar\u0131 art\u0131rma\u011fa v\u0259 istifad\u0259\u00e7i interfeysini l\u0259\u011fv etm\u0259y\u0259 imkan verir. \u018fn \u00e7ox istifad\u0259 edil\u0259n ilk \u00fc\u00e7l\u00fcy\u0259 h\u0259m\u00e7inin \u201cOpenSMTPD\u201d po\u00e7t serverind\u0259 kodu uzaqdan icra etm\u0259k v\u0259 imtiyazlar\u0131 art\u0131rmaq \u00fc\u00e7\u00fcn istifad\u0259 edil\u0259 bil\u0259n \u201cCVE-2020-7247\u201d bo\u015flu\u011fu daxildir.<\/p>\n\n\n\n

Son n\u00f6qt\u0259 cihazlar\u0131 vasit\u0259sil\u0259 h\u00fccumlarda istifad\u0259 olunan bo\u015fluqlar<\/strong>. MDB \u00f6lk\u0259l\u0259rind\u0259 korporativ cihazlara h\u00fccum etm\u0259k \u00fc\u00e7\u00fcn t\u0259cav\u00fczkarlar \u0259n \u00e7ox \u201c7-Zip\u201d v\u0259 \u201cWinRAR\u201d arxivl\u0259rind\u0259ki, el\u0259c\u0259 d\u0259 \u201cGoogle Chrome\u201d brauzerind\u0259ki bo\u015fluqlardan istifad\u0259 edirl\u0259r. 2024-c\u00fc ilin birinci r\u00fcb\u00fcnd\u0259 v\u0259 2023-c\u00fc ild\u0259 MDB \u00f6lk\u0259l\u0259rind\u0259ki t\u0259\u015fkilatlara h\u00fccum ed\u0259rk\u0259n t\u0259cav\u00fczkarlar \u201c7-Zip\u201dd\u0259ki sistem n\u00f6qsanlar\u0131ndan istifad\u0259 edibl\u0259r (CVE-2023-31102\/CVE-2023-40481 v\u0259 CVE-2022-29072). \u018fn \u00e7ox rast g\u0259lin\u0259nl\u0259r\u0259 \u201cWinRAR\u201d (CVE-2023-38831) v\u0259 \u201cGoogle Chrome\u201d (CVE-2023-1822\/CVE-2023-1812\/CVE-2023-1813 v\u0259 s.) proqramlar\u0131ndak\u0131 bo\u015fluqlar da daxildir. \u018fn aktiv \u015f\u0259kild\u0259 istifad\u0259 edil\u0259n bo\u015fluqlardan \u0259ks\u0259riyy\u0259ti (10-dan 9-u) z\u0259r\u0259rli kodun uzaqdan icras\u0131na imkan verir. \u00dcst\u0259lik, onlar\u0131n dem\u0259k olar ki ham\u0131s\u0131 2023-c\u00fc ild\u0259 qeyd\u0259 al\u0131n\u0131b.<\/p>\n\n\n\n

Fidy\u0259 proqram\u0131 t\u0259hl\u00fck\u0259si<\/strong>. T\u0259cav\u00fczkarlar bo\u015fluqlardan, o c\u00fcml\u0259d\u0259n fidy\u0259 proqramlar\u0131 vasit\u0259sil\u0259 edil\u0259n h\u00fccumlar \u00fc\u00e7\u00fcn istifad\u0259 edirl\u0259r. 2024-c\u00fc ild\u0259 onlar d\u00fcnya \u00fczr\u0259 t\u0259\u015fkilatlar \u00fc\u00e7\u00fcn \u0259sas t\u0259hl\u00fck\u0259l\u0259rd\u0259n biri olaraq qal\u0131rlar: bel\u0259 h\u00fccumlar\u0131n say\u0131 sabit olaraq y\u00fcks\u0259k olaraq qal\u0131r, fidy\u0259nin \u00fcmumi h\u0259cmi art\u0131r, \u015firk\u0259tl\u0259r is\u0259 de\u015fifr\u0259 prosesinin \u00e7\u0259tinliyi il\u0259 \u00fczl\u0259\u015firl\u0259r.<\/p>\n\n\n\n

2024-c\u00fc ilin birinci r\u00fcb\u00fcnd\u0259 fidy\u0259 proqramlar\u0131n\u0131n \u0259n \u00e7ox yay\u0131lm\u0131\u015f \u00fc\u00e7 n\u00f6v\u00fc** s\u0131ras\u0131na \u201cDcryptor\u201d, \u201cLockbit\u201d v\u0259 \u201cConti\u201d troyanlar\u0131 daxildir. Ke\u00e7\u0259n ilin eyni d\u00f6vr\u00fcnd\u0259 is\u0259 ilk \u00fc\u00e7l\u00fck bel\u0259 idi: \u201cPhobos\u201d, \u201cLockbit\u201d v\u0259 \u201cConti\u201d.<\/p>\n\n\n\n

\u201cHesabat\u0131 haz\u0131rlamaqda m\u0259qs\u0259dimiz m\u00f6vcud kibert\u0259hl\u00fck\u0259 m\u0259nz\u0259r\u0259sinin \u0259trafl\u0131 t\u0259dqiqini t\u0259qdim etm\u0259k, h\u0259m\u00e7inin d\u00fczg\u00fcn strukturla\u015fd\u0131r\u0131lm\u0131\u015f informasiya t\u0259hl\u00fck\u0259sizliyi prosesl\u0259ri v\u0259 t\u0259cav\u00fczkarlar\u0131n taktika, \u00fcsul v\u0259 prosedurlar\u0131n\u0131n t\u0259hlilinin kibert\u0259hl\u00fck\u0259l\u0259rl\u0259 etibarl\u0131 m\u00fcbariz\u0259 vasit\u0259si olaraq qald\u0131\u011f\u0131n\u0131 bir daha n\u00fcmayi\u015f etdirm\u0259k idi. X\u00fcsusil\u0259, sistem bo\u015fluqlar\u0131n\u0131n t\u0259\u015fkilatlara h\u00fccumlar \u00fc\u00e7\u00fcn istifad\u0259 edilm\u0259sinin qar\u015f\u0131s\u0131n\u0131 almaq \u00fc\u00e7\u00fcn onlar\u0131n aradan qald\u0131r\u0131lmas\u0131 prosesini v\u0259 ya Patch Management (yamaqlardan d\u00fczg\u00fcn istifad\u0259) qurmaq vacibdir. H\u0259m\u00e7inin t\u0259hdidl\u0259ri tez m\u00fc\u0259yy\u0259n etm\u0259y\u0259 v\u0259 onlar\u0131 aradan qald\u0131rma\u011fa imkan ver\u0259n kompleks t\u0259hl\u00fck\u0259sizlik h\u0259ll\u0259rind\u0259n istifad\u0259 etm\u0259k laz\u0131md\u0131r. Texniki vasit\u0259l\u0259rl\u0259 yana\u015f\u0131, i\u015f\u00e7il\u0259rin r\u0259q\u0259msal savadl\u0131l\u0131\u011f\u0131n\u0131n art\u0131r\u0131lmas\u0131na diqq\u0259t yetirm\u0259k laz\u0131md\u0131r, \u00e7\u00fcnki bir \u00e7ox hallarda h\u00fccumlar insan amili say\u0259sind\u0259 m\u00fcmk\u00fcn olur\u201d, – dey\u0259 Kaspersky-nin t\u0259hl\u00fck\u0259l\u0259rin geni\u015fl\u0259ndirilmi\u015f t\u0259dqiqi \u015f\u00f6b\u0259sinin r\u0259hb\u0259ri Nikita Nazarov qeyd edir.<\/p>\n\n\n\n

Sistem bo\u015fluqlar\u0131n\u0131n \u015firk\u0259t\u0259 h\u00fccumlarda istifad\u0259sinin qar\u015f\u0131s\u0131n\u0131 almaq \u00fc\u00e7\u00fcn Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri t\u00f6vsiy\u0259 edirl\u0259r:<\/p>\n\n\n\n