{"id":5557,"date":"2015-11-19T09:59:54","date_gmt":"2015-11-19T09:59:54","guid":{"rendered":"https:\/\/ihs.com.tr\/blog\/?p=5557"},"modified":"2015-11-19T09:59:54","modified_gmt":"2015-11-19T09:59:54","slug":"linux-encoder-1-virusu-hizla-yayiliyor","status":"publish","type":"post","link":"https:\/\/www.ihs.com.tr\/blog\/linux-encoder-1-virusu-hizla-yayiliyor\/","title":{"rendered":"Linux.Encoder.1 Vir\u00fcs\u00fc H\u0131zla Yay\u0131l\u0131yor"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\">Hen\u00fcz yeni tespit edilmi\u015f olmas\u0131na ra\u011fmen Linux web sunucular\u0131n\u0131 hedefleyen <strong>Linux.Encoder.1<\/strong>\u00a0adl\u0131 kripto-fidye yaz\u0131l\u0131m\u0131 h\u0131zla yay\u0131lmaya ba\u015flad\u0131.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Bir g\u00fcvenlik \u015firketine g\u00f6re 2000\u2019in \u00fczerinde web sitesi bu yeni Linux.Encoder.1 kripto-fidye yaz\u0131l\u0131m\u0131ndan etkilenmi\u015f durumda. Rus g\u00fcvenlik \u015firketi Dr. Web ge\u00e7en hafta ba\u015f\u0131nda Linux web sunucular\u0131na y\u00f6nelik, \u00e7ok say\u0131da dizini ve dosyay\u0131 \u015fifreleyen ilk kripto-fidye yaz\u0131l\u0131m\u0131n\u0131 tespit etti.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">\u015eirket o tarihte \u201conlarca\u201d web sitesinin etkilendi\u011fini bildirmi\u015fti. Son birka\u00e7 g\u00fcn i\u00e7erisinde ise etkilenen site say\u0131s\u0131n\u0131n binlerce oldu\u011funu s\u00f6yl\u00fcyorlar. \u015eirket bug\u00fcn yakla\u015f\u0131k 2000 sitenin Linux.Encoder.1 yaz\u0131l\u0131m\u0131ndan etkilendi\u011fini bildirdi. Bu tahmin Google\u2019da README_FOR_DECRYPT.txt metni i\u00e7in yap\u0131lan araman\u0131n sonu\u00e7lar\u0131na dayan\u0131yor. Bu dosya, i\u00e7inde \u015fifreleme komutlar\u0131n\u0131 ve bir Bitcoin\u2019lik fidye talebini bar\u0131nd\u0131ran bir k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m.<\/span><\/p>\n<p><a href=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/11\/Linux.Encoder.1-fidye-yaz\u0131l\u0131m\u0131.png\" data-rel=\"penci-gallery-image-content\" ><img decoding=\"async\" class=\"alignnone size-medium wp-image-5562\" src=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/11\/Linux.Encoder.1-fidye-yaz\u0131l\u0131m\u0131-300x188.png\" alt=\"Linux.Encoder.1 fidye yaz\u0131l\u0131m\u0131\" width=\"300\" height=\"188\" srcset=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/11\/Linux.Encoder.1-fidye-yaz\u0131l\u0131m\u0131-300x188.png 300w, https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/11\/Linux.Encoder.1-fidye-yaz\u0131l\u0131m\u0131.png 800w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p><span style=\"font-size: 14pt;\">Dr. Web aramas\u0131n\u0131 12 Kas\u0131m Per\u015fembe g\u00fcn\u00fc yapm\u0131\u015ft\u0131. ZDNet taraf\u0131ndan ayn\u0131 metin i\u00e7in yap\u0131lan arama sonucunda 2400 sitenin etkilendi\u011fi ortaya \u00e7\u0131kt\u0131. Bu da yaz\u0131l\u0131m\u0131n h\u0131zla yay\u0131ld\u0131\u011f\u0131n\u0131 g\u00f6steriyor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">G\u00fcvenlik \u015firketi fidye yaz\u0131l\u0131m\u0131n\u0131n yayg\u0131n olarak kullan\u0131lan Magento CMS\u2019in yamas\u0131z versiyonlar\u0131ndaki a\u00e7\u0131\u011f\u0131 kullanarak Linux web sunucular\u0131n\u0131 etkiledi\u011fini s\u00f6yl\u00fcyor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Ekim ay\u0131 sonunda bir dizi yama yay\u0131nlayan Magento\u2019nun \u015fu an i\u00e7in bilinen bir a\u00e7\u0131\u011f\u0131 bulunmamakta. Dr. Web Linux.Encoder.1 k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n\u0131 yayan siber su\u00e7lular\u0131n ayn\u0131 zamanda WordPress sistemlerini de hedefledi\u011fini ekliyor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Neyse ki bu Linux fidye yaz\u0131l\u0131m\u0131n\u0131n \u015fu anki versiyonu hatal\u0131. Rastgele \u00f6zel RSA anahtarlar\u0131 olu\u015fturam\u0131yor. \u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Bu hata sayesinde g\u00fcvenlik \u015firketi BitDefender siber su\u00e7lulara fidye \u00f6demeye gerek kalmadan \u015fifreli dosyalar\u0131n \u015fifresini \u00e7\u00f6zebilen \u00fccretsiz bir ara\u00e7 yay\u0131nlad\u0131. Dr. Web de abonelerine y\u00f6nelik bir ara\u00e7 yay\u0131nlam\u0131\u015f durumda.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Web y\u00f6neticilerinin bu sorunu \u00fccretsiz \u015fifre \u00e7\u00f6zme arac\u0131yla bile gidermelerinin zor olaca\u011f\u0131 tahmin ediliyor. Di\u011fer yandan y\u00f6neticilerin CMS kurulumlar\u0131na en son yamalar\u0131 uygulamalar\u0131n gerekti\u011fi de hat\u0131rlat\u0131l\u0131yor.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">\u201cBu sald\u0131r\u0131 siber su\u00e7lular\u0131n Linux ve \u015fifreleme dosyalar\u0131 \u00e7al\u0131\u015ft\u0131ran web sunucular\u0131n\u0131 etkilemek i\u00e7in k\u00f6k dizin \u00f6nceliklerine ihtiya\u00e7lar\u0131 olmad\u0131\u011f\u0131n\u0131 g\u00f6steriyor. Ayr\u0131ca bu Trojan, \u00f6zellikle de bir\u00e7ok pop\u00fcler CMS\u2019te hala kapat\u0131lmam\u0131\u015f a\u00e7\u0131klar oldu\u011fu g\u00f6z \u00f6n\u00fcnde bulundurulursa, internet kaynaklar\u0131 sahipleri i\u00e7in hala b\u00fcy\u00fck bir tehdit olu\u015fturuyor. Baz\u0131 webmasterlar ya zaman\u0131nda yap\u0131lmas\u0131 gereken g\u00fcncellemeleri ihmal ediyor ya da s\u00fcresi dolmu\u015f CMS s\u00fcr\u00fcmlerini kullan\u0131yor.\u201d<br \/>\n<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">\u015eirket y\u00f6neticilere sald\u0131rganlara para \u00f6dememelerini, \u015fifreli dosyalar\u0131n oldu\u011fu dizinlerin i\u00e7eri\u011fini de\u011fi\u015ftirmemelerini ve sunucudan hi\u00e7bir dosyay\u0131 silmemelerini \u00f6neriyor. Her ne kadar fidye yaz\u0131l\u0131m\u0131n\u0131n bu versiyonunda baz\u0131 a\u00e7\u0131klar olsa da, sald\u0131rganlar\u0131n gelecekte bu sorunlar\u0131 ortadan kald\u0131rabilece\u011fini ve daha ciddi bir tehdit haline gelebileceklerini de s\u00f6zlerine ekliyor.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hen\u00fcz yeni tespit edilmi\u015f olmas\u0131na ra\u011fmen Linux web sunucular\u0131n\u0131 hedefleyen Linux.Encoder.1\u00a0adl\u0131 kripto-fidye yaz\u0131l\u0131m\u0131 h\u0131zla yay\u0131lmaya ba\u015flad\u0131. Bir g\u00fcvenlik \u015firketine g\u00f6re 2000\u2019in \u00fczerinde&hellip;<\/p>\n","protected":false},"author":3,"featured_media":5561,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-5557","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-haberler"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5557","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5557"}],"version-history":[{"count":4,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5557\/revisions"}],"predecessor-version":[{"id":5580,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5557\/revisions\/5580"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media\/5561"}],"wp:attachment":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5557"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5557"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5557"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}