{"id":3085,"date":"2022-09-07T09:31:41","date_gmt":"2022-09-07T06:31:41","guid":{"rendered":"https:\/\/rockvell.com\/?p=3085"},"modified":"2022-09-07T09:31:43","modified_gmt":"2022-09-07T06:31:43","slug":"sad%c9%99-dil-il%c9%99-des%c9%99k-fidy%c9%99-proqramlarinin-hucumlari-getdikc%c9%99-daha-da-hiyl%c9%99g%c9%99rl%c9%99sir","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=3085","title":{"rendered":"Sad\u0259 dil il\u0259 des\u0259k: fidy\u0259 proqramlar\u0131n\u0131n h\u00fccumlar\u0131 getdikc\u0259 daha da hiyl\u0259g\u0259rl\u0259\u015fir"},"content":{"rendered":"\n<p>Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri iki yeni fidy\u0259 kiberqrupu a\u015fkar edib. Onlar \u00e7ox platformal\u0131 dill\u0259r\u0259 m\u00fcraci\u0259t etm\u0259d\u0259n eyni vaxtda m\u00fcxt\u0259lif \u0259m\u0259liyyat sisteml\u0259rin\u0259 h\u00fccum ed\u0259 bil\u0259rl\u0259r. 2022-ci ilin \u0259vv\u0259lind\u0259 Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri fidy\u0259 proqram\u0131 yarad\u0131c\u0131lar\u0131n\u0131n platformalararas\u0131 imkanlar\u0131n\u0131 nec\u0259 inki\u015faf etdirdikl\u0259ri haqq\u0131nda dan\u0131\u015f\u0131blar. Lakin bu d\u0259f\u0259 s\u00f6hb\u0259t sad\u0259 dill\u0259rd\u0259 yaz\u0131lm\u0131\u015f, eyni zamanda m\u00fcxt\u0259lif sisteml\u0259r\u0259 h\u00fccum ed\u0259 bil\u0259n proqram t\u0259minat\u0131ndan gedir. Yeni qruplardan birincisi C dilind\u0259 yaz\u0131lm\u0131\u015f \u201cRedAlert\u201d z\u0259r\u0259rli proqram\u0131ndan istifad\u0259 edir. 2022-ci ilin iyulunda a\u015fkar edil\u0259n ikincisi qrup is\u0259 Delphi-d\u0259 yaz\u0131lm\u0131\u015f \u201cMonster\u201d z\u0259r\u0259rli proqramd\u0131r. Monster-in \u0259lam\u0259tdar x\u00fcsusiyy\u0259ti onun qrafik istifad\u0259\u00e7i interfeysidir. Bel\u0259 bir komponent \u0259vv\u0259ll\u0259r he\u00e7 vaxt bir fidy\u0259 proqram\u0131 t\u0259r\u0259find\u0259n t\u0259qdim edilm\u0259yib. \u201cMonster\u201d m\u00fc\u0259llifl\u0259ri onu \u0259mrl\u0259r x\u0259ttinin \u0259lav\u0259 bir parametri kimi daxil edib.  T\u0259cav\u00fczkarlar h\u0259m\u00e7inin fidy\u0259 proqramlar\u0131n\u0131n h\u00fccumlar\u0131 \u00fc\u00e7\u00fcn Windows 7-11 versiyalar\u0131nda t\u0259rtibat\u00e7\u0131lara m\u0259lum olmayan sistem bo\u015fluqlar\u0131 vasit\u0259sil\u0259 m\u00fcdaxil\u0259 ed\u0259n eskploytlardan istifad\u0259 edirl\u0259r. N\u00fcmun\u0259l\u0259rd\u0259n biri CVE-2022-24521 bo\u015flu\u011fudur ki, yoluxmu\u015f cihaz\u0131n sistemind\u0259 imtiyazlar \u0259ld\u0259 etm\u0259y\u0259 imkan verir. Bu bo\u015fluq \u00fc\u00e7\u00fcn yamaq yaratd\u0131qdan iki h\u0259ft\u0259 sonra t\u0259cav\u00fczkarlar Windows-un m\u00fcxt\u0259lif versiyalar\u0131n\u0131 d\u0259st\u0259kl\u0259y\u0259n iki yeni eksployt haz\u0131rlay\u0131blar. \u201cFidy\u0259 proqramlar\u0131 m\u00fc\u0259llifl\u0259rinin onlar\u0131 platformalararas\u0131 dill\u0259rd\u0259n istifad\u0259 ed\u0259r\u0259k yaratmalar\u0131na \u00f6yr\u0259\u015fmi\u015fik. Lakin indi onlar sad\u0259 proqramla\u015fd\u0131rma dill\u0259rind\u0259 m\u00fcxt\u0259lif \u0259m\u0259liyyat sisteml\u0259rin\u0259 h\u00fccum etm\u0259k \u00fc\u00e7\u00fcn z\u0259r\u0259rli kod yazma\u011f\u0131 \u00f6yr\u0259nibl\u0259r. Fidy\u0259 proqram\u0131 s\u0259nayesinin inki\u015faf\u0131ndak\u0131 m\u00f6vcud tendensiyalar \u015firk\u0259tl\u0259rd\u0259n bu c\u00fcr h\u00fccumlar\u0131n a\u015fkarlanmas\u0131 v\u0259 qar\u015f\u0131s\u0131n\u0131n al\u0131nmas\u0131 \u00fc\u00e7\u00fcn effektiv t\u0259dbirl\u0259rin g\u00f6r\u00fcl\u00fcb-g\u00f6r\u00fclm\u0259m\u0259sin\u0259 diqq\u0259ti art\u0131rma\u011f\u0131 t\u0259l\u0259b edir. Bundan \u0259lav\u0259, b\u00fct\u00f6v proqram t\u0259minat\u0131n\u0131n m\u00fcnt\u0259z\u0259m olaraq yenil\u0259nm\u0259si \u00e7ox vacibdir\u201d, &#8211;  dey\u0259 Kaspersky-nin kibert\u0259hl\u00fck\u0259sizlik \u00fczr\u0259 eksperti Sergey Lojkin bildirir. \u201cRedAlert\u201d v\u0259 \u201cMonster\u201d fidy\u0259 proqram\u0131 v\u0259 t\u0259rtibat\u00e7\u0131lara m\u0259lum olmayan sistem bo\u015fluqlar\u0131 vasit\u0259sil\u0259 m\u00fcdaxil\u0259 ed\u0259n eskploytlar haqq\u0131nda \u0259trafl\u0131 m\u0259lumat: https:\/\/securelist.com\/ransomware-updates-1-day-exploits\/107291\/. Biznesl\u0259ri fidy\u0259 proqram\u0131 h\u00fccumlar\u0131ndan qorumaq \u00fc\u00e7\u00fcn Kaspersky \u015firk\u0259tl\u0259r\u0259 a\u015fa\u011f\u0131dak\u0131 t\u0259dbirl\u0259ri g\u00f6rm\u0259yi xat\u0131rlad\u0131r: \u2022 z\u0259rur\u0259t yaranmad\u0131qca, ictimai \u015f\u0259b\u0259k\u0259l\u0259rd\u0259n uzaq masa\u00fcst\u00fc xidm\u0259tl\u0259r\u0259 (m\u0259s\u0259l\u0259n, RDP) qo\u015fulma\u011fa icaz\u0259 verm\u0259yin; bu xidm\u0259tl\u0259rd\u0259 g\u00fccl\u00fc \u015fifr\u0259l\u0259rd\u0259n istifad\u0259 etm\u0259k \u00fc\u00e7\u00fcn t\u0259hl\u00fck\u0259sizlik siyas\u0259tl\u0259rini konfiqurasiya edin; \u2022 \u015f\u0259b\u0259k\u0259d\u0259 istifad\u0259 edil\u0259n kommersiya VPN h\u0259ll\u0259ri \u00fc\u00e7\u00fcn m\u00f6vcud yamaqlar\u0131 vaxt\u0131nda qura\u015fd\u0131r\u0131n; \u2022 istifad\u0259 olunan b\u00fct\u00fcn cihazlarda proqram t\u0259minat\u0131n\u0131 m\u00fct\u0259madi olaraq yenil\u0259yin; \u2022 t\u0259hl\u00fck\u0259sizlik strategiyan\u0131z\u0131 \u015f\u0259b\u0259k\u0259 h\u0259r\u0259k\u0259tl\u0259rinin a\u015fkarlanmas\u0131na v\u0259 m\u0259lumatlar\u0131n \u0130nternet\u0259 \u00f6t\u00fcr\u00fclm\u0259sin\u0259 y\u00f6n\u0259ldin; t\u0259cav\u00fczkarlar\u0131n ba\u011flant\u0131s\u0131n\u0131 a\u015fkar etm\u0259k \u00fc\u00e7\u00fcn \u00e7\u0131x\u0131\u015f trafikin\u0259 x\u00fcsusi diqq\u0259t yetirin; \u2022 m\u0259lumatlar\u0131n m\u00fcnt\u0259z\u0259m qaydada ehtiyat n\u00fcsx\u0259sini \u00e7\u0131xar\u0131n v\u0259 laz\u0131m olduqda onlara tez daxil ola bil\u0259c\u0259yinizd\u0259n \u0259min olun; \u2022 b\u00fct\u00f6v infrastrukturu ist\u0259nil\u0259n m\u00fcr\u0259kk\u0259blikd\u0259 olan kiberh\u00fccumlardan qorumaq \u00fc\u00e7\u00fcn Kaspersky Symphony XDR kimi h\u0259rt\u0259r\u0259fli h\u0259ll\u0259rd\u0259n istifad\u0259 edin: bu platforma dig\u0259r \u015feyl\u0259rl\u0259 yana\u015f\u0131, h\u00fccumlar\u0131 ilkin m\u0259rh\u0259l\u0259d\u0259, t\u0259cav\u00fczkarlar son m\u0259qs\u0259dl\u0259rin\u0259 \u00e7atana q\u0259d\u0259r tan\u0131ma\u011fa v\u0259 dayand\u0131rma\u011fa k\u00f6m\u0259k ed\u0259c\u0259k a\u015fkarlama v\u0259 cavab sisteml\u0259rini d\u0259 \u0259hat\u0259 edir;  \u2022 m\u0259s\u0259l\u0259n, Kaspersky Automated Security Awareness Platform-un k\u00f6m\u0259yil\u0259 \u0259m\u0259kda\u015flara kibet\u0259hl\u00fck\u0259sizlik qaydalar\u0131 haqq\u0131nda t\u0259lim ke\u00e7in; \u2022 Biznes \u00fc\u00e7\u00fcn Kaspersky Endpoint Security kimi etibarl\u0131 t\u0259hl\u00fck\u0259sizlik h\u0259llind\u0259n istifad\u0259 edin. O, eksploytlar\u0131n qar\u015f\u0131s\u0131n\u0131n al\u0131nmas\u0131 x\u00fcsusiyy\u0259tl\u0259rin\u0259, davran\u0131\u015f a\u015fkarlama moduluna v\u0259 z\u0259r\u0259rli h\u0259r\u0259k\u0259tl\u0259ri geri \u00e7evirm\u0259k \u00fc\u00e7\u00fcn m\u00fch\u0259rrik\u0259 malikdir. H\u0259ll h\u0259m\u00e7inin t\u0259cav\u00fczkarlar t\u0259r\u0259find\u0259n onun cihazdan silinm\u0259sini \u0259ng\u0259ll\u0259y\u0259n \u00f6z\u00fcn\u00fcm\u00fcdafi\u0259 mexanizml\u0259rin\u0259 malikdir. \u2022 SOC m\u00fct\u0259x\u0259ssisl\u0259rin\u0259 Kaspersky-nin 25 illik f\u0259aliyy\u0259ti \u0259rzind\u0259 toplanm\u0131\u015f kiberh\u00fccumlar haqq\u0131nda m\u0259lumatlar\u0131 ehtiva ed\u0259n Kaspersky Threat Intelligence Portal kimi \u0259n son t\u0259hdid m\u0259lumatlar\u0131 bazas\u0131na \u00e7\u0131x\u0131\u015f t\u0259min edin. \u018fsas funksiyalara pulsuz giri\u015f https:\/\/opentip.kaspersky.com \/sayt\u0131nda m\u00f6vcuddur. <\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/rockvell.com\/wp-content\/uploads\/2022\/09\/K.png\" alt=\"\" class=\"wp-image-2968\" \/><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri iki yeni fidy\u0259 kiberqrupu a\u015fkar edib. Onlar \u00e7ox platformal\u0131 dill\u0259r\u0259 m\u00fcraci\u0259t etm\u0259d\u0259n eyni vaxtda m\u00fcxt\u0259lif \u0259m\u0259liyyat sisteml\u0259rin\u0259 h\u00fccum ed\u0259 bil\u0259rl\u0259r. 2022-ci ilin \u0259vv\u0259lind\u0259 Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri fidy\u0259 proqram\u0131 yarad\u0131c\u0131lar\u0131n\u0131n platformalararas\u0131 imkanlar\u0131n\u0131 nec\u0259 inki\u015faf etdirdikl\u0259ri&#8230;<\/p>\n","protected":false},"author":2,"featured_media":2637,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/3085"}],"collection":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3085"}],"version-history":[{"count":1,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/3085\/revisions"}],"predecessor-version":[{"id":3086,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/posts\/3085\/revisions\/3086"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=\/wp\/v2\/media\/2637"}],"wp:attachment":[{"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3085"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3085"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rockvell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3085"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}