{"id":28296,"date":"2022-05-17T12:54:04","date_gmt":"2022-05-17T09:54:04","guid":{"rendered":"https:\/\/kutaybilen.com.tr\/?p=28296"},"modified":"2022-05-17T12:54:04","modified_gmt":"2022-05-17T09:54:04","slug":"900-kurumsal-vpn-sunucusunun-hayati-bilgileri-calindi","status":"publish","type":"post","link":"https:\/\/kutaybilen.com.tr\/?p=28296","title":{"rendered":"900 Kurumsal VPN Sunucusunun Hayati Bilgileri \u00c7al\u0131nd\u0131"},"content":{"rendered":"<p>\u0130nterneti daha inan\u00e7l\u0131 kullanmak i\u00e7in tercih edilen VPN hizmetleri, son devirde hackerlar taraf\u0131ndan s\u0131kl\u0131kla ata\u011fa u\u011fruyor. Bu h\u00fccumlar\u0131n son ma\u011fduru ise <strong>Pulse<\/strong> <strong>Secure<\/strong> <strong>VPN<\/strong> oldu. Pulse Secure VPN\u2019in 900\u2019den fazla kurumsal sunucusunun IP adresini payla\u015fan hacker, bunlar\u0131n yan\u0131nda kullan\u0131c\u0131 isimleri ve \u015fifreleri de payla\u015ft\u0131.\u00a0<\/p>\n<p>Tehdit istihbarat \u015firketi <strong>KELA\u2019n\u0131n<\/strong> yard\u0131m\u0131yla hacker\u0131n payla\u015ft\u0131\u011f\u0131 listenin bir kopyas\u0131na ula\u015fan ZDNet, siber g\u00fcvenli\u011fi tehdit eden bu s\u0131z\u0131nt\u0131y\u0131 do\u011frulad\u0131. Bu do\u011frulamaya nazaran hacker\u0131n ele ge\u00e7irip yay\u0131nlad\u0131\u011f\u0131 k\u0131ymetli bilgiler \u015fu bi\u00e7imde:<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/77\/62fe26aedbb85927ccc8d306223c373863367167.png\"\/><\/p>\n<ul>\n<li>Pulse Secure VPN sunucular\u0131n\u0131n <strong>IP adresleri<\/strong><\/li>\n<li>Pulse Secure VPN sunucular\u0131n\u0131n firmware versiyonlar\u0131<\/li>\n<li>T\u00fcm sunucular\u0131n SSH anahtarlar\u0131<\/li>\n<li>Kullan\u0131c\u0131lar\u0131n listesi ve <strong>\u015fifreleri<\/strong><\/li>\n<li>Y\u00f6netici hesab\u0131 detaylar\u0131<\/li>\n<li><strong>Son VPN giri\u015fleri <\/strong>(Kullan\u0131c\u0131 isimleri ve a\u00e7\u0131k metin \u015fifreleri dahil)<\/li>\n<li>VPN oturum \u00e7erezleri<\/li>\n<\/ul>\n<p>Finansal c\u00fcr\u00fcmler konusunda tehdit istihbarat analisti olan Bank Security, Pulse Secure VPN sunucular\u0131n\u0131n <strong>CVE-2019-11510<\/strong> g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan etkilendi\u011fini s\u00f6yledi. Bank Security, listeyi derleyen hacker\u0131n, Pulse Secure VPN sunucular\u0131 i\u00e7in IPv4 adres alan\u0131n\u0131 tarad\u0131\u011f\u0131n\u0131, sistemlere eri\u015fmek ve sunucu ayarlar\u0131na ula\u015fmak i\u00e7in CVE-2019-11510 g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan yararland\u0131\u011f\u0131n\u0131 ve elde etti\u011fi t\u00fcm bilgileri tek bir merkezde depolad\u0131\u011f\u0131n\u0131 s\u00f6yledi. Payla\u015f\u0131lan listenin klas\u00f6r tarihlerine bakt\u0131\u011f\u0131m\u0131zda, 24 Haziran ile 8 Temmuz 2020 ortas\u0131nda ger\u00e7ekle\u015fti\u011fi g\u00f6r\u00fcl\u00fcyor.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/77\/9a88c34284f4723a71de920cfbe68cefa6e00dba.png\"\/><\/p>\n<p><b>Elde edilen bilgilerin bir\u00e7ok g\u00fcncelleme yapmayan kullan\u0131c\u0131lar<\/b><\/p>\n<p>ABD merkezli bir ba\u015fka tehdit istihbarat \u015firketi Bad Packets, bu listede bulunan <strong>913 IP adresinden<\/strong> 677\u2019sinin CVE-2019-11510\u2019a kar\u015f\u0131 savunmas\u0131z oldu\u011funu s\u00f6yledi. Bu kurumsal \u015firketlerin Haziran 2020\u2019den bu yana yama yapmad\u0131\u011f\u0131 anla\u015f\u0131l\u0131yor. Bu \u015firketlerden kimileri ise Pulse Secure sunucular\u0131n\u0131 g\u00fcncelleseler bile \u015fifrelerini de\u011fi\u015ftirmeyen bireylerden olu\u015fuyor.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/77\/bede1e83078e459a9f224070b2cea494c426d20e.png\"\/><\/p>\n<p>p  <\/p>\n<p>Pulse Secure VPN sunucular\u0131, genelde \u015firket a\u011flar\u0131na eri\u015fim i\u00e7in kullan\u0131l\u0131r. Yani i\u015f\u00e7i konuttan \u00e7al\u0131\u015f\u0131yor dahi olsa internet \u00fczerinden \u015firket a\u011f\u0131na uzaktan ba\u011flanabilir. Bu cins bilgiler ele ge\u00e7irildi\u011finde ise hackerlar t\u00fcm \u015firket bilgilerine \u00e7ar\u00e7abuk eri\u015fim sa\u011flayabilir.<\/p>\n<div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>\u0130nterneti daha inan\u00e7l\u0131 kullanmak i\u00e7in tercih edilen VPN hizmetleri, son devirde hackerlar taraf\u0131ndan s\u0131kl\u0131kla ata\u011fa u\u011fruyor. Bu h\u00fccumlar\u0131n son &#8230;<\/p>\n","protected":false},"author":1,"featured_media":28297,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[15],"tags":[1886,946,1399],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28296"}],"collection":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=28296"}],"version-history":[{"count":1,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28296\/revisions"}],"predecessor-version":[{"id":28298,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28296\/revisions\/28298"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/media\/28297"}],"wp:attachment":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=28296"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=28296"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=28296"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}