{"id":21709,"date":"2022-05-05T09:54:04","date_gmt":"2022-05-05T06:54:04","guid":{"rendered":"https:\/\/kutaybilen.com.tr\/?p=21709"},"modified":"2022-05-05T09:54:04","modified_gmt":"2022-05-05T06:54:04","slug":"ghost-siber-hucuma-ugradigini-dogruladi","status":"publish","type":"post","link":"https:\/\/kutaybilen.com.tr\/?p=21709","title":{"rendered":"Ghost, Siber H\u00fccuma U\u011frad\u0131\u011f\u0131n\u0131 Do\u011frulad\u0131"},"content":{"rendered":"<p>\u00c7evrimi\u00e7i yay\u0131nlar i\u00e7in tasarlanm\u0131\u015f fiyats\u0131z a\u00e7\u0131k kaynakl\u0131 bir blog platformu olan <strong>Ghost<\/strong>, bug\u00fcn yap\u0131lan bir a\u00e7\u0131klamada <strong>siber korsanlar\u0131n sald\u0131r\u0131s\u0131na<\/strong> u\u011frad\u0131\u011f\u0131n\u0131 do\u011frulad\u0131. Kendini \u201cd\u00fcnyan\u0131n en tan\u0131nan \u00e7a\u011fda\u015f a\u00e7\u0131k kaynakl\u0131 yay\u0131n platformu\u201d olarak lanse eden \u015firketin <strong>750 bini<\/strong> ge\u00e7en kay\u0131tl\u0131 m\u00fc\u015fterileri ortas\u0131nda Mozilla, NASA ve DuckDuckGo \u00fczere bir\u00e7ok dev kurum ve kurulu\u015f yer al\u0131yor.<\/p>\n<p>Toplamda <strong>2 milyondan<\/strong> fazla y\u00fcklemenin bulundu\u011fu platformda, sadece ge\u00e7en hafta i\u00e7erisinde i\u00e7lerinde m\u00fcellifler, <em>podcaster\u2019lar<\/em> (podcast yapan kimse) ve g\u00f6r\u00fcnt\u00fc i\u00e7erik olu\u015fturucular\u0131n\u0131n da bulundu\u011fu kullan\u0131c\u0131lar taraf\u0131ndan <strong>6.920 yeni yay\u0131n<\/strong> olu\u015fturulmu\u015ftu.<\/p>\n<p><b>\u015eirket, h\u00fccumun ayr\u0131nt\u0131lar\u0131na dair bir a\u00e7\u0131klama yay\u0131nlad\u0131:<\/b><\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/60\/e3c95b86a9883b7fcfb868c02b9a362fe2fe0cd6.jpeg\"\/><\/p>\n<p>Bug\u00fcn, yani <strong>3 May\u0131s<\/strong> tarihinde de bir h\u00fccuma u\u011frayan \u015firket, gece saatlerinde yay\u0131nlad\u0131\u011f\u0131 bir hizmet g\u00fcncellemesinde kesintinin nedenini ara\u015ft\u0131rd\u0131\u011f\u0131n\u0131 belirtti. \u00d6\u011fle saatlerindeyse kesintiye neden olan \u015feyin <strong>siber ak\u0131nlar<\/strong> oldu\u011fu anla\u015f\u0131ld\u0131. \u015eirketten yap\u0131lan a\u00e7\u0131klamada <em>\u201c3 May\u0131s 2020\u2019de saat 01.30 UTC\u2019de (TS\u0130 04.30) bir sald\u0131rgan, altyap\u0131m\u0131za eri\u015fmek i\u00e7in <strong>SaltStack master\u2019da<\/strong> bir CVE kulland\u0131\u201d<\/em> s\u00f6zlerini kulland\u0131.<\/p>\n<p>At\u0131fta bulunan kritik g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131nsa <strong>Python<\/strong> yaz\u0131l\u0131m lisan\u0131 kullan\u0131larak olu\u015fturulan a\u00e7\u0131k kaynakl\u0131 bir \u00e7e\u015fit yap\u0131land\u0131rma y\u00f6netimi\u00a0olan <strong>SaltStack\u2019te<\/strong> oldu\u011fu belirtildi. Yap\u0131lan siber h\u00fccum Ghost Pro sitelerini ve Ghost.org faturaland\u0131rma hizmetlerini etkilerken sald\u0131rganlar\u0131n, <strong>kredi kart\u0131<\/strong> bilgilerine yahut d\u00fcz metin olarak saklanan rastgele bir <strong>kullan\u0131c\u0131 referans\u0131na<\/strong> ula\u015famad\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fcl\u00fcyor. Mevzuya dair yap\u0131lan \u015firket a\u00e7\u0131klamas\u0131nda <em>\u201c\u00d6zel m\u00fc\u015fteri bilgilerinin, \u015fifrelerin yahut \u00f6b\u00fcr bilgilerin tehlikeye at\u0131ld\u0131\u011f\u0131na dair direkt bir delil yok\u201d <\/em>dendi.<\/p>\n<p>\u015eirket taraf\u0131ndan TS\u0130 15.46\u2019da yap\u0131lan bir di\u011fer a\u00e7\u0131klamada, erken ara\u015ft\u0131rma sonu\u00e7lar\u0131na nazaran SaltStack g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n, Ghost sunucular\u0131nda <strong>kripto para \u00fcnitesi \u00e7\u0131karmak i\u00e7in<\/strong> kullan\u0131ld\u0131\u011f\u0131n\u0131n anla\u015f\u0131ld\u0131\u011f\u0131 bildirildi. G\u00fcvenlik uzman\u0131 olan John Opdenakker, Ghost taarruz te\u015febb\u00fcs\u00fc hakk\u0131nda yapt\u0131\u011f\u0131 a\u00e7\u0131klamada en son yamalar\u0131 y\u00fcklemenin k\u0131ymetine vurgu yapt\u0131.<\/p>\n<div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>\u00c7evrimi\u00e7i yay\u0131nlar i\u00e7in tasarlanm\u0131\u015f fiyats\u0131z a\u00e7\u0131k kaynakl\u0131 bir blog platformu olan Ghost, bug\u00fcn yap\u0131lan bir a\u00e7\u0131klamada siber korsanlar\u0131n &#8230;<\/p>\n","protected":false},"author":1,"featured_media":21710,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[15],"tags":[1104,946,890],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/21709"}],"collection":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=21709"}],"version-history":[{"count":1,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/21709\/revisions"}],"predecessor-version":[{"id":21711,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/21709\/revisions\/21711"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/media\/21710"}],"wp:attachment":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=21709"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=21709"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=21709"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}