{"id":3403,"date":"2022-09-19T11:53:42","date_gmt":"2022-09-19T08:53:42","guid":{"rendered":"https:\/\/rockvell.com\/?p=3403"},"modified":"2022-09-19T11:53:44","modified_gmt":"2022-09-19T08:53:44","slug":"geymerl%c9%99rin-diqq%c9%99tin%c9%99-youtube-da-z%c9%99r%c9%99rli-proqramlar-ehtiva-ed%c9%99n-video-peyda-olub","status":"publish","type":"post","link":"https:\/\/rockvell.com\/?p=3403","title":{"rendered":"Geymerl\u0259rin diqq\u0259tin\u0259: YouTube-da z\u0259r\u0259rli proqramlar ehtiva ed\u0259n video peyda olub"},"content":{"rendered":"\n

Geymerl\u0259rin diqq\u0259tin\u0259: YouTube-da z\u0259r\u0259rli proqramlar ehtiva ed\u0259n video peyda olub<\/strong><\/p>\n\n\n\n

Kaspersky m\u00fct\u0259x\u0259ssisl\u0259ri YouTube-da qeyri-adi z\u0259r\u0259rli kampaniya a\u015fkar edibl\u0259r. Bel\u0259 ki, oyun m\u0259zmunu ad\u0131 alt\u0131nda t\u0259cav\u00fczkarlar bir s\u0131ra z\u0259r\u0259rli fayllar yay\u0131rlar. Onlar f\u0131r\u0131ldaq f\u0259ndl\u0259ri v\u0259 bo\u015fluqlar\u0131n t\u0259svirl\u0259rini v\u0259 ya bu v\u0259 ya dig\u0259r oyun v\u0259 ya proqram t\u0259minat\u0131n\u0131 s\u0131nd\u0131rmaq bar\u0259d\u0259 t\u0259limatlar\u0131 sahibl\u0259rinin x\u0259b\u0259ri olmadan m\u00f6vcud kanallara y\u00fckl\u0259yir v\u0259 bu videolara birba\u015fa z\u0259r\u0259rli proqramlar\u0131 yerl\u0259\u015fdirir, t\u0259svir m\u0259lumat\u0131na is\u0259 z\u0259r\u0259rli RAR arxivin\u0259 ke\u00e7id \u0259lav\u0259 edirl\u0259r. \u018fg\u0259r onu y\u00fckl\u0259s\u0259niz, o, d\u0259rhal \u00f6z\u00fcn\u00fc arxivd\u0259n \u00e7\u0131xarma\u011fa v\u0259 sistem\u0259 k\u00f6\u00e7m\u0259y\u0259 ba\u015flayacaq.<\/p>\n\n\n\n

Geymerl\u0259rin (video oyun h\u0259v\u0259skarlar\u0131) diqq\u0259tini c\u0259lb etm\u0259k \u00fc\u00e7\u00fcn t\u0259cav\u00fczkarlar bir s\u0131ra m\u0259\u015fhur oyunlar haqq\u0131nda videolardan istifad\u0259 edirl\u0259r: : APB Reloaded, CrossFire, DayZ, Dying Light 2, F1\u00ae 22, Farming Simulator, Farthest Frontier, FIFA 22, Final Fantasy XIV, Forza, Lego Star Wars, Osu!, Point Blank, Project Zomboid, Rust, Sniper Elite, Spider-Man, Stray, Thymesia, VRChat v\u0259 Walken.<\/p>\n\n\n\n

T\u0259hl\u00fck\u0259 n\u0259d<\/strong>\u0259n ibar\u0259tdir<\/strong>?<\/strong> Z\u0259r\u0259rli arxivd\u0259 RedLine da daxil olmaqla bir ne\u00e7\u0259 fayl var. Bu \u00e7ox yay\u0131lm\u0131\u015f o\u011furluq troyan\u0131d\u0131r. O, Chromium v\u0259 Gecko brauzerl\u0259rind\u0259ki avtomatik doldurma formalar\u0131ndan loginl\u0259ri, \u015fifr\u0259l\u0259ri, kukil\u0259ri (cookies), bank kart\u0131 m\u0259lumatlar\u0131n\u0131, kripto pul kis\u0259l\u0259rind\u0259n, ani mesajla\u015fma proqramlar\u0131ndan v\u0259 FTP\/SSH\/VPN m\u00fc\u015ft\u0259ril\u0259rind\u0259n m\u0259lumatlar\u0131 o\u011furlaya, h\u0259m\u00e7inin cihazlarda m\u00fc\u0259yy\u0259n geni\u015fl\u0259ndirm\u0259l\u0259r\u0259 malik fayllar\u0131 axtara bil\u0259r. Bundan \u0259lav\u0259, RedLine \u00fc\u00e7\u00fcnc\u00fc t\u0259r\u0259f proqramlar\u0131n\u0131 y\u00fckl\u0259y\u0259, cmd.exe-d\u0259 \u0259mrl\u0259ri yerin\u0259 yetir\u0259 v\u0259 standart olaraq ilk i\u015f\u0259 sal\u0131nan brauzerd\u0259ki linkl\u0259ri a\u00e7a bil\u0259r. T\u0259hl\u00fck\u0259 t\u0259kc\u0259 RedLine-\u0131n \u00f6z\u00fcnd\u0259 deyil, h\u0259m d\u0259 bu z\u0259r\u0259rli proqram d\u0259stinin \u00f6z-\u00f6z\u00fcn\u00fc yaya bilm\u0259sind\u0259dir.<\/p>\n\n\n\n

Qeyri-adi olan ba\u015fqa n\u0259 var<\/strong>?<\/strong> Z\u0259r\u0259rli arxivin dig\u0259r elementi m\u0259d\u0259n\u00e7idir. T\u0259cav\u00fczkarlar t\u0259kc\u0259 oyun hesablar\u0131n\u0131n m\u0259lumatlar\u0131 il\u0259 deyil, h\u0259m d\u0259 oyun komp\u00fcterl\u0259rinin resurslar\u0131 il\u0259 maraqlan\u0131rlar. Bu halda, onlar, ehtimal ki, daha sonra m\u0259d\u0259n\u00e7ilik \u00fc\u00e7\u00fcn istifad\u0259 edil\u0259 bil\u0259n videokartlar\u0131 qura\u015fd\u0131r\u0131rlar.<\/p>\n\n\n\n

\u201cGeymerl\u0259r tez-tez kibercinay\u0259tkarlar\u0131n h\u0259d\u0259fin\u0259 \u00e7evrilirl\u0259r. Bu kampaniyan\u0131n m\u0259qs\u0259di login v\u0259 \u015fifr\u0259l\u0259ri o\u011furlamaq, h\u0259m\u00e7inin ba\u015fqalar\u0131n\u0131n komp\u00fcterl\u0259rind\u0259 m\u0259d\u0259n\u00e7ilik etm\u0259k imkan\u0131 \u0259ld\u0259 etm\u0259kdir. Biz siz\u0259 n\u0259yi v\u0259 haradan y\u00fckl\u0259m\u0259yi diqq\u0259tl\u0259 se\u00e7m\u0259yi v\u0259 etibars\u0131z hesablardan g\u0259l\u0259n \u015f\u00fcbh\u0259li arxivl\u0259rl\u0259 i\u015fl\u0259y\u0259rk\u0259n x\u00fcsusil\u0259 diqq\u0259tli olma\u011f\u0131 m\u0259sl\u0259h\u0259t g\u00f6r\u00fcr\u00fck,\u201d dey\u0259 Kaspersky-nin kibert\u0259hl\u00fck\u0259sizlik \u00fczr\u0259 m\u00fct\u0259x\u0259ssisi Oleq Kupreyev qeyd edib.<\/p>\n\n\n\n

RedLine h\u00fccumlar\u0131 haqq\u0131nda daha \u00e7ox m\u0259lumat: https:\/\/securelist.ru\/self-spreading-stealer-attacks-gamers-via-youtube\/105890\/<\/a>.<\/p>\n\n\n\n

Kaspersky, geymerl\u0259r \u00fc\u00e7\u00fcn t\u0259hl\u00fck\u0259sizlik t\u0259dbirl\u0259rini xat\u0131rlad\u0131r:<\/p>\n\n\n\n