{"id":5457,"date":"2015-11-13T09:32:35","date_gmt":"2015-11-13T09:32:35","guid":{"rendered":"https:\/\/ihs.com.tr\/blog\/?p=5457"},"modified":"2015-11-13T09:54:30","modified_gmt":"2015-11-13T09:54:30","slug":"hackerlarin-en-sevdigi-hedef-adobe-flash","status":"publish","type":"post","link":"https:\/\/www.ihs.com.tr\/blog\/hackerlarin-en-sevdigi-hedef-adobe-flash\/","title":{"rendered":"Hackerlar\u0131n En Sevdi\u011fi Hedef: Adobe Flash"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\"><strong>Adobe Flash<\/strong> bu aralar g\u00fcvenlik uzmanlar\u0131 taraf\u0131ndan pek sevilmiyor. Pazartesi g\u00fcn\u00fc yay\u0131nlanan <a href=\"https:\/\/www.recordedfuture.com\/top-vulnerabilities-2015\/\" target=\"_blank\" rel=\"nofollow\">yeni bir \u00e7al\u0131\u015fmada<\/a> Flash\u2019\u0131n siber su\u00e7lular taraf\u0131ndan bilgisayarlara k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m y\u00fcklemek i\u00e7in ne kadar s\u0131k kullan\u0131ld\u0131\u011f\u0131 ortaya \u00e7\u0131kart\u0131ld\u0131.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">\u00c7al\u0131\u015fmada y\u00fcz\u00fcn \u00fczerinde exploit arac\u0131 incelendi. Bu ara\u00e7lar bir kullan\u0131c\u0131 bir sayfaya girdi\u011finde otomatik olarak o sayfadaki yaz\u0131l\u0131m a\u00e7\u0131klar\u0131n\u0131 arayan \u00e7er\u00e7eveler. Exploit ara\u00e7lar\u0131n\u0131 geli\u015ftiren ki\u015filer ise genellikle belli bir t\u00fcr k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131 yaymak isteyen ki\u015filer taraf\u0131ndan tutuluyor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">ABD\u2019li siber g\u00fcvenlik \u015firketi <strong>Recorded Future<\/strong>\u2019a g\u00f6re exploit ara\u00e7lar\u0131nda en s\u0131k rastlanan on a\u00e7\u0131\u011f\u0131n sekizi milyonlarca bilgisayarda multimedya i\u00e7eri\u011fi g\u00f6r\u00fcnt\u00fclemek i\u00e7in kullan\u0131lan Adobe Flash\u2019\u0131 hedef al\u0131yor. Recorded Future yapt\u0131\u011f\u0131 \u00e7al\u0131\u015fmada Angler, Neutrino ve Nuclear Park gibi pop\u00fcler exploit ara\u00e7lar\u0131 taraf\u0131ndan kullan\u0131lan yaz\u0131l\u0131m a\u00e7\u0131klar\u0131yla birlikte Ocak ve Eyl\u00fcl aylar\u0131 aras\u0131ndaki siber su\u00e7 forumlar\u0131n\u0131 inceledi.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Recorded Future analistleri, di\u011fer bir\u00e7ok g\u00fcvenlik uzman\u0131yla benzer bir sonuca ula\u015farak \u201cFlash\u2019\u0131n g\u00fcvenli bir \u00e7al\u0131\u015fma ortam\u0131ndaki yerinin sorgulanmas\u0131 gerekti\u011fini\u201d s\u00f6yl\u00fcyor. Raporda \u201cHackerlar\u0131n k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar\u0131 yaymas\u0131 konusunda Adobe Flash\u2019\u0131n a\u00e7\u0131klar\u0131n\u0131n rol\u00fc bilinse de, bu rol\u00fcn b\u00fcy\u00fckl\u00fc\u011f\u00fc \u015fa\u015f\u0131rt\u0131c\u0131 boyutta,\u201d deniyor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Adobe kod g\u00fcncellemeleri vas\u0131tas\u0131yla y\u0131llardan beri Flash\u2019\u0131 daha g\u00fcvenli bir hale getirmek i\u00e7in \u00e7al\u0131\u015f\u0131yor ama bunun yakla\u015f\u0131k yirmi y\u0131ll\u0131k bir uygulama i\u00e7in ne kadar zor bir i\u015f oldu\u011fu ortada. Adobe hemen her ay bir yama yay\u0131nl\u0131yor, ayr\u0131ca siber su\u00e7lular\u0131n s\u0131k s\u0131k kulland\u0131\u011f\u0131 g\u00fcn acil durum yamalar\u0131 da yay\u0131nlan\u0131yor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Apple\u2019\u0131n kurucusu Steve Jobs herkesin bildi\u011fi \u00fczere iPhone\u2019da Flash \u00e7al\u0131\u015ft\u0131r\u0131lmas\u0131n\u0131 yasaklam\u0131\u015ft\u0131. Facebook\u2019un ba\u015f g\u00fcvenlik sorumlusu Alex Stamos Temmuz ay\u0131nda Twitter hesab\u0131nda \u201cAdobe\u2019un art\u0131k Flash\u2019\u0131n miad\u0131n\u0131 doldurdu\u011fu tarihi ilan etmesi, internet taray\u0131c\u0131lar\u0131ndan da ayn\u0131 g\u00fcn killbitleri koymalar\u0131n\u0131 istemesi gerekiyor,\u201d diye yazd\u0131. \u00a0\u00a0Bu y\u0131l, di\u011fer \u015firketler de Flash\u2019\u0131n a\u00e7\u0131klar\u0131n\u0131n olu\u015fturdu\u011fu riski azaltmak i\u00e7in benzer uygulamalar\u0131 ba\u015flatm\u0131\u015f durumda. Eyl\u00fcl ay\u0131nda Google web sayfalar\u0131nda d\u0131\u015f kaynakl\u0131 Flash i\u00e7eriklerinin otomatik olarak oynat\u0131lmas\u0131n\u0131 engelleyecek \u00f6nlemler ald\u0131. Bu \u00f6nlemin esas amac\u0131 Chrome\u2019un performans\u0131n\u0131 artt\u0131rmak olsa da, g\u00fcvenlik anlam\u0131nda fayda sa\u011flad\u0131\u011f\u0131 da s\u00f6ylenebilir.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Uygulama aleyhindeki en ilgi \u00e7ekici kampanyalardan birisi de \u201cOccupy Flash\u201d hareketi. Grup her \u015feyin bir\u00e7ok multimedya \u00f6zelli\u011fine sahip web dili olan HTML 5\u2019e ta\u015f\u0131nmas\u0131 gerekti\u011fini savunuyor. Occupy Flash\u2019\u0131n manifestosunda \u015fu ifadeler yer al\u0131yor: \u201cFlash devri kapand\u0131. \u00c7ok fazla a\u00e7\u0131\u011f\u0131 var. \u00c7ok s\u0131k \u00e7\u00f6k\u00fcyor. Flash kapal\u0131 standartlar ve tek tarafl\u0131 kurumsal web teknolojisi kontrol\u00fc devrinden kalma bir fosil.\u201d<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Adobe Flash bu aralar g\u00fcvenlik uzmanlar\u0131 taraf\u0131ndan pek sevilmiyor. Pazartesi g\u00fcn\u00fc yay\u0131nlanan yeni bir \u00e7al\u0131\u015fmada Flash\u2019\u0131n siber su\u00e7lular taraf\u0131ndan bilgisayarlara k\u00f6t\u00fc ama\u00e7l\u0131&hellip;<\/p>\n","protected":false},"author":3,"featured_media":5478,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-5457","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-haberler"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5457","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5457"}],"version-history":[{"count":3,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5457\/revisions"}],"predecessor-version":[{"id":5477,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5457\/revisions\/5477"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media\/5478"}],"wp:attachment":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5457"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5457"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5457"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}