{"id":44596,"date":"2021-08-19T08:53:00","date_gmt":"2021-08-19T05:53:00","guid":{"rendered":"https:\/\/www.turhost.com/blog\/?p=44596"},"modified":"2021-11-26T09:40:57","modified_gmt":"2021-11-26T06:40:57","slug":"apt-nedir","status":"publish","type":"post","link":"https:\/\/www.turhost.com/blog\/apt-nedir\/","title":{"rendered":"APT Nedir?"},"content":{"rendered":"\n<p>APT Nedir? sorusu en ciddi siber sald\u0131r\u0131 t\u00fcrlerinden birini anlaman\u0131za, maruz kald\u0131\u011f\u0131n\u0131zda h\u0131zla yan\u0131t vermenize ve riskleri en aza indirmeniz i\u00e7in do\u011fru ara\u00e7lar\u0131 ve stratejileri se\u00e7menize yard\u0131mc\u0131 olabilir. <\/p>\n\n\n\n<h2 id=\"gelismis-kalici-tehdit-nedir\" class=\"wp-block-heading\">Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit Nedir?<\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-1200x538.jpg\" alt=\"Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit Nedir?, APT Nedir?\" class=\"wp-image-46520\" width=\"710\" height=\"318\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-1-1.jpg 1500w\" sizes=\"auto, (max-width: 710px) 100vw, 710px\" \/><figcaption>APT sald\u0131r\u0131lar\u0131 siber korsanlar\u0131n bir sisteme eri\u015fim elde edip orada <strong>uzun s\u00fcre<\/strong> fark edilmeden kalmay\u0131 ba\u015fard\u0131\u011f\u0131, tespiti zor tehdit t\u00fcrleridir.<\/figcaption><\/figure><\/div>\n\n\n\n<p>Bir \u015firketin kar\u015f\u0131la\u015fabilece\u011fi en tehlikeli siber tehditler aras\u0131nda yer alan APT; geli\u015fmi\u015f <strong>kal\u0131c\u0131 <\/strong>tehdit (Advanced Persistent Threats) anlam\u0131na gelir. APT sald\u0131r\u0131lar\u0131 siber korsanlar\u0131n bir sisteme eri\u015fim elde edip orada <strong>uzun s\u00fcre<\/strong> fark edilmeden kalmay\u0131 ba\u015fard\u0131\u011f\u0131, tespiti zor tehdit t\u00fcrleridir. <\/p>\n\n\n\n<p>\u015eirketlerin nedenini bilmedi\u011fi kesintiler ya\u015famalar\u0131na sebep olan APT sald\u0131r\u0131lar\u0131; veri kayb\u0131, altyap\u0131 sabotaj\u0131, hizmet kesintileri ve site devralmalar\u0131 ile sonu\u00e7lanabilir. APT&#8217;ler, di\u011fer \u00e7evrimi\u00e7i tehditlerden daha karma\u015f\u0131kt\u0131r. M\u00fcmk\u00fcn oldu\u011funca \u00e7ok say\u0131da cihaz\u0131 hedefleyen k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar\u0131n aksine, geli\u015fmi\u015f kal\u0131c\u0131 tehditler genellikle <strong>belirli bir hedef <\/strong>d\u00fc\u015f\u00fcn\u00fclerek tasarlanm\u0131\u015ft\u0131r. APT&#8217;ler \u00e7o\u011fu zaman \u00fcnl\u00fc, \u00f6nemli bir \u015firketin pe\u015fine d\u00fc\u015fer, hatta \u00fclkeleri, el\u00e7ilikleri, savunma ve telekom\u00fcnikasyon kurumlar\u0131n\u0131 hedef al\u0131rlar. Bu nedenle her ihlal; yaln\u0131zca hedefin savunmas\u0131na uyan \u00f6zel bir plan geli\u015ftirilerek tasarlan\u0131r.<\/p>\n\n\n\n<p>\u00c7o\u011funlukla otomasyona dayanmayan manuel sald\u0131r\u0131lar olarak bilinen APT&#8217;ler kesinlikle vur-ka\u00e7 sald\u0131r\u0131lar\u0131 de\u011fildir. Ama\u00e7lar\u0131 sisteme zarar vermekten \u00e7ok a\u011fa eri\u015fip <strong>sistemi alarma ge\u00e7irmeden verileri \u00e7\u0131karmak<\/strong> i\u00e7in yeterince i\u00e7eride kalmakt\u0131r.<\/p>\n\n\n\n<p>APT sald\u0131r\u0131lar\u0131n\u0131n, b\u00fcy\u00fck finansal etkilerle sonu\u00e7lanan bir\u00e7ok veri ihlaline neden oldu\u011fu bilinmektedir. As\u0131l endi\u015fe verici nokta, bu sald\u0131r\u0131lar\u0131n karma\u015f\u0131k y\u00f6ntemler kullanarak geleneksel g\u00fcvenlik \u00f6nlemlerinin baz\u0131lar\u0131 taraf\u0131ndan fark edilmeden kal\u0131c\u0131 olabilmeleridir. <\/p>\n\n\n\n<p>APT sald\u0131rganlar\u0131 s\u0131kl\u0131kla, giri\u015f noktas\u0131 olarak daha az korunan \u015firketleri kullanmak i\u00e7in b\u00fcy\u00fck firmalar\u0131n tedarik zincirindeki k\u00fc\u00e7\u00fck i\u015fletmeleri hedefler. Bu nedenle <strong>her \u00f6l\u00e7ekteki i\u015fletme<\/strong>  i\u00e7in APT sald\u0131r\u0131lar\u0131n\u0131n nas\u0131l tespit edilece\u011fini bilmek \u00f6nemlidir.<\/p>\n\n\n\n<h2 id=\"apt-nasil-calisir\" class=\"wp-block-heading\">APT Nas\u0131l \u00c7al\u0131\u015f\u0131r?<\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-1200x538.jpg\" alt=\"APT Nas\u0131l \u00c7al\u0131\u015f\u0131r?\" class=\"wp-image-46523\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-2-1.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>APT sald\u0131r\u0131lar\u0131nda korsanlar sald\u0131r\u0131y\u0131 uzaktan kontrol ederek, a\u011fdaki kritik verileri arama, bulma ve sifonlama f\u0131rsat\u0131na sahiptir.<\/figcaption><\/figure><\/div>\n\n\n\n<p>Geli\u015fmi\u015f kal\u0131c\u0131 tehditler genellikle <strong>a\u015famal\u0131<\/strong> olarak ger\u00e7ekle\u015ftirilir; a\u011f\u0131n hacklenmesiyle ba\u015flayan s\u00fcre\u00e7te hedef alg\u0131lanmamakt\u0131r. Daha sonra korsanlar, en kolay eri\u015filebilir noktalar\u0131 bulmak i\u00e7in \u015firket verilerini haritaland\u0131r\u0131r ve hassas verileri toplamaya ba\u015flar.<\/p>\n\n\n\n<p>APT sald\u0131r\u0131lar\u0131nda korsanlar, bir a\u011fa ilk eri\u015fimi sa\u011flamak i\u00e7in farkl\u0131 y\u00f6ntemler kullan\u0131r, bu sald\u0131r\u0131larda her seferinde tutarl\u0131 bir \u015fekilde ayn\u0131 davran\u0131\u015f\u0131 sergileyen vir\u00fcsler ve k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar gibi geleneksel tehditlerde oldu\u011fu gibi <strong>genel bir yakla\u015f\u0131m s\u00f6z konusu de\u011fildir.<\/strong><\/p>\n\n\n\n<p>Aksine, belirli bir organizasyonu hedef almak i\u00e7in titizlikle ve dikkatlice planlanm\u0131\u015f tehditlerdir. Bu nedenle, geli\u015fmi\u015f kal\u0131c\u0131 tehditler, hedeflenen \u015firketteki mevcut g\u00fcvenlik \u00f6nlemlerinden ka\u00e7mak i\u00e7in son derece \u00f6zelle\u015ftirilmi\u015f ve olduk\u00e7a karma\u015f\u0131k bir \u015fekilde tasarlanm\u0131\u015f olabilirler.<\/p>\n\n\n\n<p>Siber korsanlar s\u0131kl\u0131kla, ilk eri\u015fimi sa\u011flayabilmek i\u00e7in <strong>kimlik av\u0131 <\/strong>sald\u0131r\u0131lar\u0131 yoluyla eri\u015filen \u00e7al\u0131\u015fanlar\u0131n veya i\u015f ortaklar\u0131n\u0131n kimlik bilgilerini kullan\u0131r. B\u00f6ylece kurulu\u015fun sistemlerini ve verilerini haritalamalar\u0131n\u0131 ve \u015firket verilerini bo\u015faltmalar\u0131n\u0131 sa\u011flayacak sald\u0131r\u0131 plan\u0131n\u0131 haz\u0131rlamalar\u0131 i\u00e7in yeterince uzun bir s\u00fcre sistemde tespit edilmeden kalabilirler.<\/p>\n\n\n\n<p>APT sald\u0131r\u0131lar\u0131nda belirli bir a\u011f ihlal edildi\u011finde, k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m baz\u0131 standart navigasyon sistemlerinden kolayl\u0131kla gizlenebilir, bir sistemden di\u011ferine ge\u00e7ebilir, veri toplamaya ba\u015flayabilir ve a\u011f etkinli\u011fini izleyebilir. Korsanlar sald\u0131r\u0131y\u0131 uzaktan kontrol ederek, \u015firketin a\u011f\u0131nda kritik verileri arama, bulma ve sifonlama f\u0131rsat\u0131na sahiptir.<\/p>\n\n\n\n<p>Geli\u015fmi\u015f kal\u0131c\u0131 tehdit geni\u015f bir terim oldu\u011fundan b\u00f6yle sald\u0131r\u0131larda farkl\u0131 a\u015famalara rastlanmaktad\u0131r ancak genellikle 3 temel a\u015famadan s\u00f6z etmek m\u00fcmk\u00fcnd\u00fcr:<\/p>\n\n\n\n<h2 id=\"1-asama-sizma\" class=\"wp-block-heading\">1. A\u015fama: <strong>S\u0131zma <\/strong><\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-1200x538.jpg\" alt=\"APT'nin A\u015famalar\u0131, S\u0131zma,\" class=\"wp-image-46529\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-3-2.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>Geli\u015fmi\u015f kal\u0131c\u0131 tehditler, hedeflenen \u015firketteki mevcut g\u00fcvenlik \u00f6nlemlerinden ka\u00e7mak i\u00e7in son derece \u00f6zelle\u015ftirilmi\u015f ve olduk\u00e7a karma\u015f\u0131k bir \u015fekilde tasarlanm\u0131\u015f olabilirler.<\/figcaption><\/figure><\/div>\n\n\n\n<p>S\u0131zma; korsanlar\u0131n kimlik av\u0131 gibi bir y\u00f6ntemle g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 aray\u0131p sisteme girmenin bir yolunu buldu\u011fu, a\u011fa eri\u015fim kazand\u0131\u011f\u0131 a\u015famaya denir. S\u0131zma s\u0131ras\u0131nda yayg\u0131n olarak kullan\u0131lan taktik, e\u015fzamanl\u0131 bir <strong>DDoS sald\u0131r\u0131s\u0131<\/strong> ba\u015flatmakt\u0131r. DDoS, personelin dikkatini da\u011f\u0131tarak a\u011f\u0131n ihlalini kolayla\u015ft\u0131r\u0131r. <br><br>APT korsanlar\u0131, ilk eri\u015fimi elde etmek i\u00e7in a\u015fa\u011f\u0131dakiler dahil \u00e7e\u015fitli sald\u0131r\u0131 y\u00f6ntemleri kullan\u0131r:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>S\u0131f\u0131r\u0131nc\u0131 g\u00fcn istismarlar\u0131<\/li><li>Kimlik av\u0131<\/li><li>Uzaktan dosya ekleme (RFI)<\/li><li>SQL enjeksiyonlar\u0131<\/li><li>Siteler aras\u0131 komut dosyas\u0131 \u00e7al\u0131\u015ft\u0131rma (XSS)<\/li><li>K\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m <\/li><li>DNS t\u00fcnelleme<\/li><\/ul>\n\n\n\n<p>\u0130lk eri\u015fim sa\u011fland\u0131ktan sonra, APT korsanlar\u0131, me\u015fru bir yaz\u0131l\u0131m gibi g\u00f6r\u00fcnmesi i\u00e7in genellikle maskelenmi\u015f bir arka kap\u0131 trojan\u0131 olu\u015fturarak sistemi uzaktan kontrol edecek dayana\u011f\u0131 olu\u015fturur.<\/p>\n\n\n\n<h2 id=\"2-asama-genisleme\" class=\"wp-block-heading\">2. A\u015fama: <strong>Geni\u015fleme <\/strong><\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-1200x538.jpg\" alt=\"Geni\u015fleme, APT'nin a\u015famalar\u0131\" class=\"wp-image-46532\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-4-2.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>APT sald\u0131rganlar\u0131, oturum a\u00e7ma kimlik bilgilerinin de\u011fi\u015fmesi durumunda eri\u015fimin devam\u0131n\u0131 sa\u011flayabilmek i\u00e7in genellikle arka kap\u0131 trojan\u0131 kullan\u0131ld\u0131\u011f\u0131ndan sistemde truva at\u0131 alg\u0131lan\u0131yorsa, bir APT sald\u0131r\u0131s\u0131n\u0131n s\u00f6z konusu olabilece\u011fi d\u00fc\u015f\u00fcn\u00fclmelidir.<\/figcaption><\/figure><\/div>\n\n\n\n<p>Sald\u0131rganlar sisteme giri\u015f yapt\u0131ktan sonra, eri\u015fimlerini geni\u015fletmek, derinle\u015ftirmek ve eri\u015fimlerinin iptal edilemedi\u011finden emin olmak isterler. Bunun i\u00e7in genellikle k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar arac\u0131l\u0131\u011f\u0131yla di\u011fer sunucular i\u00e7in ek \u015fifreler toplamaya \u00e7al\u0131\u015f\u0131rlar ya da \u00e7ald\u0131klar\u0131 orijinal parola de\u011fi\u015ftirilse bile eri\u015fimde kalabilmek i\u00e7in bir Truva At\u0131 arac\u0131l\u0131\u011f\u0131yla gelecekteki izinsiz giri\u015flerini garanti alt\u0131na al\u0131rlar.<\/p>\n\n\n\n<p>Sald\u0131rganlar yerlerini sa\u011flama al\u0131p a\u011f hakk\u0131nda daha fazla bilgi toplamaya, a\u011fda daha derin eri\u015fim elde edebilecekleri ve b\u00f6ylece ek sistemleri kontrol edebilecekleri g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 bulmaya \u00e7al\u0131\u015f\u0131rlar. <\/p>\n\n\n\n<p>Geni\u015fleme, de\u011ferli verilere eri\u015fimi olan personeli hedefleyerek kullan\u0131c\u0131 hiyerar\u015fisini y\u00fckseltmeyi i\u00e7erir. Bunun i\u00e7in <a href=\"https:\/\/www.turhost.com/blog\/brute-force-nedir\/\">Brute Force (Kaba Kuvvet Sald\u0131r\u0131s\u0131)<\/a> en s\u0131k kullan\u0131lan taktiktir. <\/p>\n\n\n\n<p>Geni\u015fleme a\u015famas\u0131nda k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar, bilgisayar korsanlar\u0131n\u0131n tespit edilmeden eri\u015fimi s\u00fcrd\u00fcrmesine izin vermek d\u0131\u015f\u0131nda a\u015fa\u011f\u0131dakileri yapmas\u0131na yard\u0131mc\u0131 olur:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Sistem kontrollerinden gizlenmek<\/li><li>A\u011f segmentleri aras\u0131nda gezinmek<\/li><li>Hassas verileri toplamak<\/li><li>A\u011f etkinli\u011fini izlemek<\/li><li>Mevcut giri\u015flerin eri\u015filemez hale gelmesi durumunda yeni giri\u015f noktalar\u0131n\u0131 tespit etmek<\/li><\/ul>\n\n\n\n<p>Bu a\u015famada g\u00fcvenlik kontrolleri \u00e7o\u011funlukla tehlikenin fark\u0131nda de\u011fildir ve davetsiz misafir sald\u0131r\u0131n\u0131n hedefine y\u00f6nelik ad\u0131mlar\u0131 tamamlamaya ba\u015flar. \u00d6rne\u011fin hedef veri \u00e7almaksa, sald\u0131rganlar bilgileri paketler halinde a\u011f\u0131n \u00e7ok az trafik olan veya hi\u00e7 trafik olmayan bir b\u00f6l\u00fcm\u00fcnde depolamaya ba\u015flar.<\/p>\n\n\n\n<h2 id=\"3-asama-verilerin-cikarilmasi\" class=\"wp-block-heading\">3. A\u015fama: Verilerin \u00c7\u0131kar\u0131lmas\u0131<\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-1200x538.jpg\" alt=\"APT'nin A\u015famalar\u0131, verilerin \u00e7\u0131kar\u0131lmas\u0131\" class=\"wp-image-46534\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-5-1.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>Korsanlar verileri a\u011f d\u0131\u015f\u0131na ta\u015f\u0131madan \u00f6nce dosyalar\u0131 yal\u0131t\u0131p aktar\u0131m\u0131 kolay paketler halinde konumland\u0131r\u0131r ve bunlar\u0131 personelin normalde veri depolamad\u0131\u011f\u0131 yerlere yerle\u015ftirir.<\/figcaption><\/figure><\/div>\n\n\n\n<p>\u00dc\u00e7\u00fcnc\u00fc a\u015famada, veriler genellikle birden \u00e7ok sunucudan toplanm\u0131\u015ft\u0131r ve sistemden \u00e7\u0131kar\u0131lmaya haz\u0131r olana kadar tek bir konuma depolanm\u0131\u015ft\u0131r. Yeterince veri toplad\u0131ktan sonra h\u0131rs\u0131zlar veri aktar\u0131m\u0131 i\u00e7in g\u00fcvenlik ekibinin dikkatini da\u011f\u0131tmak ve sistem savunmas\u0131n\u0131 me\u015fgul etmek i\u00e7in ba\u015flang\u0131\u00e7taki gibi DDOS sald\u0131r\u0131s\u0131 gibi bir teknik kullanabilir. <\/p>\n\n\n\n<p>APT sald\u0131rganlar\u0131 genellikle varl\u0131klar\u0131n\u0131 belli etmeden \u00e7\u0131karma i\u015flemini tamamlamaya \u00e7al\u0131\u015f\u0131r. Verilerin \u00e7al\u0131nd\u0131\u011f\u0131 bu son a\u015fama e\u011fer tespit edilmezse gelecekteki sald\u0131r\u0131lar i\u00e7in a\u00e7\u0131k kap\u0131 b\u0131rak\u0131lm\u0131\u015f olur.<\/p>\n\n\n\n<p>E\u011fer APT sald\u0131r\u0131s\u0131n\u0131n amac\u0131 bir sistemi sabote etmekse, bu son a\u015fama farkl\u0131 \u015fekilde i\u015fler. APT korsanlar\u0131, kritik i\u015flevlerin kontrol\u00fcn\u00fc ustaca ele ge\u00e7irip t\u00fcm veritabanlar\u0131n\u0131 yok edebilir, hatta ola\u011fan\u00fcst\u00fc durum kurtarmay\u0131 \u00f6nlemek i\u00e7in hasar b\u0131rakabilir.<\/p>\n\n\n\n<h2 id=\"apt-nasil-tespit-edilir\" class=\"wp-block-heading\">APT Nas\u0131l Tespit Edilir?<\/h2>\n\n\n\n<p>APT korsanlar\u0131n\u0131n, faaliyetlerini gizlemek i\u00e7in geli\u015fmi\u015f y\u00f6ntemler kullanmas\u0131 nedeniyle bu tehditler kolayl\u0131kla tespit edilemez. Ancak tipik olarak alg\u0131lanmay\u0131 \u00f6nlemek i\u00e7in \u00f6zel olarak tasarlanm\u0131\u015f olsalar da APT sald\u0131r\u0131lar\u0131n\u0131n ger\u00e7ekle\u015fti\u011fine dair belirli sistem anormallikleri gibi kan\u0131tlar ve erken uyar\u0131 i\u015faretleri s\u00f6z konusu olabilir. APT&#8217;nin nas\u0131l tespit edilece\u011fini, belirtilerini \u00f6\u011frenmek; APT&#8217;den korunman\u0131z i\u00e7in son derece \u00f6nemlidir.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>\u00c7al\u0131nan oturum a\u00e7ma kimlik bilgileri, APT sald\u0131rganlar\u0131n\u0131n a\u011f eri\u015fimi kazanmas\u0131n\u0131n ana yollar\u0131ndan biri oldu\u011fundan <strong>garip saatlerde sunuculara s\u0131k s\u0131k giri\u015f yap\u0131lmas\u0131,<\/strong> devam eden bir APT sald\u0131r\u0131s\u0131na i\u015faret edebilir. Gece ge\u00e7 saatler gibi normalde \u00e7al\u0131\u015fanlar\u0131n a\u011fa eri\u015fmedi\u011fi zamanlarda oturum a\u00e7ma say\u0131lar\u0131nda art\u0131\u015f olmas\u0131 bir APT sald\u0131r\u0131s\u0131n\u0131n belirtisi olabilir.<br><br><\/li><li>APT sald\u0131rganlar\u0131, oturum a\u00e7ma kimlik bilgilerinin de\u011fi\u015fmesi durumunda eri\u015fimin devam\u0131n\u0131 sa\u011flayabilmek i\u00e7in genellikle <strong>arka kap\u0131 trojan\u0131 <\/strong>kullan\u0131ld\u0131\u011f\u0131ndan sistemde truva at\u0131 alg\u0131lan\u0131yorsa, bir APT sald\u0131r\u0131s\u0131 s\u00f6z konusu olabilir. Truva At\u0131, parola de\u011fi\u015fikliklerinden etkilenmeden ve ayak izi b\u0131rakmadan sisteminize uzaktan eri\u015fim sa\u011flayabilir, \u00e7al\u0131nan kimlik bilgilerinden bile daha b\u00fcy\u00fck bir tehdit olma potansiyeline sahiptir. Dilerseniz <a href=\"https:\/\/www.turhost.com/blog\/trojan-nedir-trojan-virusu-nasil-temizlenir\/\">Trojan Nedir? Trojan Vir\u00fcs\u00fc Nas\u0131l Temizlenir?<\/a> adl\u0131 yaz\u0131m\u0131za g\u00f6z atabilirsiniz.<br><br><\/li><li>Genellikle verilerin g\u00f6r\u00fcn\u00fcrde hi\u00e7bir sebep olmaks\u0131z\u0131n aniden ta\u015f\u0131nmas\u0131, olmamas\u0131 gereken bir yerde saklanmas\u0131; kontrol\u00fcn\u00fcz d\u0131\u015f\u0131nda harici bir sunucuya aktar\u0131lma s\u00fcrecinde oldu\u011funda ge\u00e7erlidir. Bu nedenle veri paketlerinin incelenmesiyle de APT&#8217;ler tespit edilebilir. Korsanlar verileri a\u011f d\u0131\u015f\u0131na ta\u015f\u0131madan \u00f6nce dosyalar\u0131 yal\u0131t\u0131p aktar\u0131m\u0131 kolay paketler halinde konumland\u0131r\u0131r ve bunlar\u0131 personelin normalde veri depolamad\u0131\u011f\u0131 yerlere yerle\u015ftirir. Yanl\u0131\u015f konumlarda bulunan veri dosyalar\u0131n\u0131n d\u00fczenli olarak incelenmesi, taranmas\u0131 gerekir.<strong> <\/strong> <strong>Garip veri taban\u0131 etkinli\u011fi,<\/strong> ani ve b\u00fcy\u00fck bir veri ak\u0131\u015f\u0131 \u00f6nemli bir ipucudur.<br><br><\/li><li><strong>Hash sald\u0131r\u0131lar\u0131<\/strong> genellikle ge\u00e7i\u015fli depolama veya parola verilerinin tutuldu\u011fu bellek \u00fczerinde hedeflenir. Bu, korsanlara yeni kimlik do\u011frulama oturumlar\u0131 olu\u015fturma f\u0131rsat\u0131 verece\u011finden b\u00f6yle durumlar tespit edildi\u011finde mutlaka ara\u015ft\u0131r\u0131lmal\u0131d\u0131r.<br><br><\/li><li><strong>Hedefli kimlik av\u0131 e-postalar\u0131<\/strong>, potansiyel bir APT&#8217;nin en belirgin i\u015faretidir. APT korsanlar\u0131n\u0131n, hassas verilere ula\u015fma umuduyla bu t\u00fcr e-postalar\u0131 \u00fcst d\u00fczey \u00e7al\u0131\u015fanlara g\u00f6nderdi\u011fi de bilinmektedir. <\/li><\/ul>\n\n\n\n<h2 id=\"apt-nasil-onlenir\" class=\"wp-block-heading\">APT Nas\u0131l \u00d6nlenir?<\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-1200x538.jpg\" alt=\"APT Nas\u0131l Tespit Edilir?, APT Nas\u0131l \u00d6nlenir?\" class=\"wp-image-46538\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-6.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>APT hacker gruplar\u0131; savunma, finansal hizmetler, hukuk, sanayi, telekom alanlar\u0131nda \u00e7e\u015fitli \u015firketleri hedefler. Hedeflenen kuruma g\u00f6re de\u011fi\u015fse de \u00e7o\u011funlukla ama\u00e7 veri ihlali, casusluk ve sabotajd\u0131r.<\/figcaption><\/figure><\/div>\n\n\n\n<p>Geli\u015fmi\u015f kal\u0131c\u0131 tehditlerle ilgili ac\u0131 ger\u00e7ek, %100 etkili olacak tek bir \u00e7\u00f6z\u00fcm olmamas\u0131d\u0131r. Vir\u00fcsten koruma programlar\u0131 gibi standart g\u00fcvenlik \u00f6nlemleri tek ba\u015f\u0131na bir \u015firketi \u00e7ok y\u00f6nl\u00fc bir sald\u0131r\u0131 t\u00fcr\u00fc olan APT&#8217;den etkili bir \u015fekilde koruyamaz. APT alg\u0131lama ve APT&#8217;den korunma; a\u011f y\u00f6neticileri, g\u00fcvenlik ekipleri ve t\u00fcm kullan\u0131c\u0131lar aras\u0131nda i\u015fbirli\u011fi ve birden fazla savunma takti\u011fi uygulanmas\u0131n\u0131 gerektirir. Bu nedenle, bir arada kullan\u0131ld\u0131\u011f\u0131nda APT korumas\u0131na y\u00f6nelik g\u00fcvenli\u011fi sa\u011flamla\u015ft\u0131racak taktikleri \u015fu \u015fekilde s\u0131ralayabiliriz:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Trafi\u011fi \u0130zleme<\/strong><br><br>Arka kap\u0131 kurulumlar\u0131n\u0131 \u00f6nlemek, \u00e7al\u0131nmak \u00fczere olan verilerin \u00e7\u0131kar\u0131lmas\u0131n\u0131 engellemek ve \u015f\u00fcpheli kullan\u0131c\u0131lar\u0131 belirlemek i\u00e7in trafi\u011fin izlenmesi ola\u011fand\u0131\u015f\u0131 davran\u0131\u015flar\u0131 tespit etmeye yard\u0131mc\u0131 olur. Dosya payla\u015f\u0131mlar\u0131n\u0131n izlenmesi ve sunucular\u0131n g\u00fcvenli\u011fi i\u00e7in sunucu izleme ara\u00e7lar\u0131n\u0131n kullan\u0131m\u0131 \u00f6nerilir.<br><br><\/li><li><strong>WAF<\/strong><br><br>Geli\u015fmi\u015f kal\u0131c\u0131 tehditlere kar\u015f\u0131 ilk savunma katman\u0131 g\u00f6revi g\u00f6recek do\u011fru g\u00fcvenlik duvar\u0131 yap\u0131s\u0131n\u0131 se\u00e7mek \u00f6nemlidir. A\u011f\u0131n ucunda bir <strong>web uygulamas\u0131 g\u00fcvenlik duvar\u0131 (WAF)<\/strong> kullanarak sunuculara gelen t\u00fcm trafik filtrelenmelidir. WAF, APT&#8217;nin s\u0131zma a\u015famas\u0131nda tipik sald\u0131r\u0131 t\u00fcrleri olan RFI ve SQL enjeksiyonu sald\u0131r\u0131lar\u0131n\u0131 \u00f6nler. <a href=\"https:\/\/www.turhost.com/blog\/donanimsal-firewall-nedir\/\">Firewall Nedir?<\/a> adl\u0131 yaz\u0131m\u0131zdan detaylar\u0131 okuyabilirsiniz.<br><\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Whitelist <\/strong><br><br>Beyaz liste olarak da bilinen whitelist, bir a\u011fdan hangi alan adlar\u0131na ve uygulamalara eri\u015filebilece\u011fini kontrol etme y\u00f6ntemidir. Beyaz listeye alma, siber sald\u0131r\u0131 tehdidini en aza indirerek APT&#8217;lerin ba\u015far\u0131 oran\u0131n\u0131 d\u00fc\u015f\u00fcr\u00fcr. <a href=\"https:\/\/www.turhost.com/blog\/whitelist-nedir\/\">Whitelist Nedir?<\/a> adl\u0131 yaz\u0131m\u0131zda da de\u011findi\u011fimiz gibi<br>beyaz listenin i\u015fe yaramas\u0131 i\u00e7in bir ekibin kabul edilebilir alan adlar\u0131n\u0131 ve uygulamalar\u0131 dikkatlice se\u00e7mesi gerekir. Kullan\u0131c\u0131lar\u0131n her zaman t\u00fcm uygulamalar\u0131n en son s\u00fcr\u00fcm\u00fcn\u00fc \u00e7al\u0131\u015ft\u0131rmas\u0131 \u00f6nemli oldu\u011fundan, kat\u0131 g\u00fcncelleme politikalar\u0131 da gereklidir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>S\u0131k\u0131 Eri\u015fim Kontrolleri<\/strong><br><br>\u00c7al\u0131\u015fanlar genellikle bir g\u00fcvenlik sisteminin en savunmas\u0131z noktas\u0131 oldu\u011fundan; APT korsanlar\u0131, savunma \u00f6nlemlerini atlamak i\u00e7in \u00e7al\u0131\u015fanlar\u0131 kolay bir ge\u00e7it haline getirmeye \u00e7al\u0131\u015f\u0131r.<br><br>Bir i\u015fletmeyi k\u00f6t\u00fc niyetli ki\u015filerden koruman\u0131n en iyi y\u00f6ntemi <strong>S\u0131f\u0131r G\u00fcven (Zero Trust)<\/strong> ilkesine ba\u011fl\u0131 kalmakt\u0131r. S\u0131f\u0131r G\u00fcven takti\u011fi her hesab\u0131n eri\u015fim d\u00fczeyini s\u0131n\u0131rlar ve bir kullan\u0131c\u0131n\u0131n yaln\u0131zca g\u00f6revini ger\u00e7ekle\u015ftirmek i\u00e7in ihtiya\u00e7 duydu\u011fu kaynaklara eri\u015fimi olmas\u0131n\u0131 sa\u011flar. B\u00f6ylece \u00e7al\u0131\u015fanlara ait hesaplar\u0131n g\u00fcvenli\u011fi ihlal edilse de davetsiz misafirin a\u011fda hareket etmesi s\u0131n\u0131rlanm\u0131\u015f olur. Ayr\u0131cal\u0131kl\u0131 hesaplara ise, \u00f6zel olarak odaklanman\u0131z \u00f6nerilir. Y\u00f6netici hesaplar\u0131nda herhangi bir de\u011fi\u015fiklik olup olmad\u0131\u011f\u0131 izlenmelidir. Olu\u015fturulan her yeni hesap kontrol edilmelidir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Antivir\u00fcs Yaz\u0131l\u0131mlar\u0131 ve Sald\u0131r\u0131 \u00d6nleme Sistemleri<br><\/strong><br>APT sald\u0131r\u0131lar\u0131na haz\u0131rl\u0131kl\u0131 olmak i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlar\u0131, truva atlar\u0131n\u0131 ve vir\u00fcsleri alg\u0131layabilen, \u00f6nleyebilen en g\u00fcncel yaz\u0131l\u0131mlara ve a\u011f\u0131n\u0131z\u0131 herhangi bir k\u00f6t\u00fc ama\u00e7l\u0131 kod i\u00e7in izleyen izinsiz giri\u015f \u00f6nleme sistemlerine (IPS) sahip olman\u0131z \u00e7ok \u00f6nemlidir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>\u0130ki fakt\u00f6rl\u00fc kimlik do\u011frulama (2FA)<\/strong><br><br>2FA, kullan\u0131c\u0131lar\u0131n a\u011f\u0131n hassas alanlar\u0131na eri\u015firken ikinci bir do\u011frulama bi\u00e7iminden ge\u00e7mesini gerektirir. Her kaynakta ek bir g\u00fcvenlik katman\u0131n\u0131n olmas\u0131, sistemde hareket eden davetsiz misafirleri yava\u015flatacakt\u0131r.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>G\u00fcncellemeler<\/strong><br><br>Sistemi g\u00fcncel tutmak, bir APT sald\u0131r\u0131s\u0131n\u0131 \u00f6nlemede hayati \u00f6nem ta\u015f\u0131r. A\u011f yaz\u0131l\u0131m\u0131n\u0131n son g\u00fcvenlik g\u00fcncellemelerine sahip oldu\u011fundan emin olmak, zay\u0131f nokta ve uyumluluk sorunlar\u0131 olas\u0131l\u0131\u011f\u0131n\u0131 azalt\u0131r.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>\u00c7al\u0131\u015fanlar\u0131n E\u011fitilmesi<br><\/strong><br>Kimlik av\u0131 doland\u0131r\u0131c\u0131l\u0131klar\u0131, bir APT sald\u0131r\u0131s\u0131 i\u00e7in ola\u011fan bir giri\u015f noktas\u0131d\u0131r. \u00c7al\u0131\u015fanlar; kimlik av\u0131 giri\u015fimlerini tan\u0131malar\u0131 ve bunlarla kar\u015f\u0131la\u015ft\u0131klar\u0131nda ne yapmalar\u0131 gerekti\u011fini \u00f6\u011frenmeleri i\u00e7in e\u011fitilmelidir. APT ve di\u011fer siber tehdit t\u00fcrleri hakk\u0131nda en g\u00fcncel tespit ve korunma bilgileri d\u00fczenli aral\u0131klarla bu e\u011fitimlerde aktar\u0131lmal\u0131d\u0131r.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>E-Posta Korumas\u0131<br><\/strong><br>E-postalar s\u0131k kullan\u0131m\u0131 nedeniyle i\u015fletmelerin savunma hatt\u0131n\u0131 zay\u0131flatabilecek bile\u015fenler aras\u0131ndad\u0131r. Bu y\u00fczden, e-postalar\u0131n\u0131z i\u00e7in spam ve k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m korumas\u0131n\u0131 etkinle\u015ftirmeniz \u00f6nerilir. Kimlik av\u0131 sald\u0131r\u0131lar\u0131n\u0131n ba\u015far\u0131 oran\u0131n\u0131 d\u00fc\u015f\u00fcren e-posta filtreleme, APT s\u0131zma giri\u015fimlerini durdurabilir. G\u00fc\u00e7l\u00fc e-posta g\u00fcvenli\u011fi uygulamalar\u0131 kullanarak gelen kutular\u0131n\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 etkinliklerden koruyabilirsiniz. <\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Arka Kap\u0131lar i\u00e7in D\u00fczenli Taramalar <br><\/strong><br>APT korsanlar\u0131n\u0131n, yasad\u0131\u015f\u0131 eri\u015fim elde ettikten sonra a\u011f \u00fczerinde b\u0131rakt\u0131\u011f\u0131 arka kap\u0131lar d\u00fczenli olarak taranarak kald\u0131r\u0131lmal\u0131d\u0131r. Bu taramalar, mevcut APT giri\u015fimlerini durdurmak ve gelecekteki APT giri\u015fimlerini \u00f6nlemek i\u00e7in etkili bir y\u00f6ntemdir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>VPN<\/strong>: APT korsanlar\u0131n\u0131n a\u011f\u0131n\u0131za kolay eri\u015fim sa\u011flamas\u0131n\u0131n \u00f6nlemeye y\u00f6nelik ara\u00e7lar aras\u0131nda yer al\u0131r. <a href=\"https:\/\/www.turhost.com/blog\/vpn-nedir-nasil-calisir\/\">VPN Nedir? Nas\u0131l \u00c7al\u0131\u015f\u0131r?<\/a> adl\u0131 yaz\u0131m\u0131zdan avantajlar\u0131n\u0131 ve dezavantajlar\u0131n\u0131 \u00f6\u011frenebilirsiniz.<\/li><\/ul>\n\n\n\n<h2 id=\"apt-tespit-edildiginde-yapilmasi-gerekenler\" class=\"wp-block-heading\">APT Tespit Edildi\u011finde Yap\u0131lmas\u0131 Gerekenler<\/h2>\n\n\n\n<div class=\"wp-block-image is-style-default\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1200\" height=\"538\" src=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-1200x538.jpg\" alt=\"APT Tespit Edildi\u011finde Yap\u0131lmas\u0131 Gerekenler, \u00dcnl\u00fc APT Sald\u0131r\u0131lar\u0131, En G\u00fcncel APT Sald\u0131r\u0131lar\u0131\" class=\"wp-image-46540\" srcset=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-1200x538.jpg 1200w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-650x291.jpg 650w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-768x344.jpg 768w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-380x170.jpg 380w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-800x358.jpg 800w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7-1160x520.jpg 1160w, https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/08\/yazi-ici-gorsel-7.jpg 1500w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><figcaption>Vir\u00fcsten koruma programlar\u0131 gibi standart g\u00fcvenlik \u00f6nlemleri tek ba\u015f\u0131na bir \u015firketi \u00e7ok y\u00f6nl\u00fc bir sald\u0131r\u0131 t\u00fcr\u00fc olan APT&#8217;den etkili bir \u015fekilde koruyamaz.<\/figcaption><\/figure><\/div>\n\n\n\n<p>Bir APT sald\u0131r\u0131s\u0131 tespit edildi\u011finde, h\u0131zl\u0131 hareket etmek \u00f6nemlidir \u00e7\u00fcnk\u00fc verileriniz hen\u00fcz \u00e7al\u0131nmam\u0131\u015f olabilir. <\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>Sisteminizin yaln\u0131zca bir b\u00f6l\u00fcm\u00fcn\u00fcn g\u00fcvenli\u011finin ihlal edildi\u011fini d\u00fc\u015f\u00fcn\u00fcyorsan\u0131z, onu di\u011fer her \u015feyden yal\u0131tarak ba\u015flamal\u0131 ve bundan sonra eri\u015fimi kald\u0131rmaya \u00e7al\u0131\u015fmal\u0131s\u0131n\u0131z.<br><\/li><li>APT&#8217;nin nas\u0131l olu\u015ftu\u011funu anlayamazsan\u0131z tekrarlamas\u0131n\u0131 durduramazs\u0131n\u0131z. Sistem olay g\u00fcnl\u00fcklerini analiz etmeniz ve sald\u0131rgan\u0131n eri\u015fim elde etmek i\u00e7in kulland\u0131\u011f\u0131 yolu bulmaya \u00e7al\u0131\u015fman\u0131z \u00f6nerilir. Hasar\u0131 de\u011ferlendirmeniz de \u00f6nemlidir \u00e7\u00fcnk\u00fc sisteminizde hangi verilerin depoland\u0131\u011f\u0131na ba\u011fl\u0131 olarak, bir APT&#8217;nin neden oldu\u011fu hasar sand\u0131\u011f\u0131n\u0131zdan daha uzun vadeli etkilere sahip olabilir.<br><\/li><li>M\u00fc\u015fterilerin veya \u00e7al\u0131\u015fanlar\u0131n ki\u015fisel bilgileri ihlal edildiyse, bu ki\u015fileri bilgilendirmenin yasal ve etik y\u00fck\u00fcml\u00fcl\u00fc\u011f\u00fc oldu\u011fu g\u00f6z \u00f6n\u00fcnde bulundurulmal\u0131d\u0131r, itibar\u0131n\u0131z a\u00e7\u0131s\u0131ndan da bu \u00f6nemlidir.<br><\/li><\/ol>\n\n\n\n<h2 id=\"unlu-apt-saldirilari\" class=\"wp-block-heading\">\u00dcnl\u00fc APT Sald\u0131r\u0131lar\u0131<\/h2>\n\n\n\n<p>D\u00fcnya \u00e7ap\u0131nda \u00e7ok say\u0131da siber g\u00fcvenlik \u015firketi, hack aktivistlerini ve eSu\u00e7lular\u0131n sald\u0131r\u0131lar\u0131n\u0131 mercek alt\u0131na alma konusunda ciddi \u00e7al\u0131\u015fmalara imza atmaktad\u0131r. Bu \u00e7al\u0131\u015fmalarda genelde sald\u0131r\u0131 isimleri sald\u0131r\u0131n\u0131n yap\u0131ld\u0131\u011f\u0131 b\u00f6lge ile ili\u015fkilendirilen hayvanlar\u0131n isimlerinden se\u00e7ilir. \u00d6rne\u011fin, BEAR&#8217;\u0131 Rusya, PANDA&#8217;y\u0131 \u00c7in, KITTEN&#8217;\u0131 \u0130ran&#8217;daki siber sald\u0131r\u0131lar\u0131n isimlerinde g\u00f6rebilirsiniz. SPIDER ise \u00e7o\u011funlukla bir b\u00f6lge ile s\u0131n\u0131rl\u0131 olmayan tehditler i\u00e7in kullan\u0131l\u0131r.<\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes\"><table><tbody><tr><td><strong>APT 27 (Goblin Panda)<br><\/strong>\u0130lk olarak 2013 y\u0131l\u0131nda birden fazla sekt\u00f6rde ticari operasyonlar\u0131 olan b\u00fcy\u00fck bir teknoloji \u015firketinin a\u011f\u0131na sald\u0131rd\u0131\u011f\u0131 zaman tespit edilmi\u015ftir.<\/td><\/tr><tr><td><strong>APT28 (Fancy Bear)<br><\/strong>Bilgisayarlar ve cep telefonlar\u0131 gibi cihazlara eri\u015fim sa\u011flamak i\u00e7in kimlik av\u0131 mesajlar\u0131 ve yasal olanlara benzeyen web sitelerini kullan\u0131r.<\/td><\/tr><tr><td><strong>APT32 (Ocean Buffalo)<br><\/strong>Vietnam merkezli ve 2012&#8217;den bu yana aktif olan bir APT t\u00fcr\u00fcd\u00fcr. Birden fazla sekt\u00f6rde \u00f6zel \u015firketlere izinsiz giri\u015fler ger\u00e7ekle\u015ftirmekte ve yabanc\u0131 h\u00fck\u00fcmetleri, muhalifleri ve gazetecileri hedef almaktad\u0131r.<\/td><\/tr><tr><td><strong>Ghostnet<br><\/strong>100&#8217;den fazla \u00fclkede h\u00fck\u00fcmet ve el\u00e7ilik bilgisayarlar\u0131n\u0131 tehlikeye atmak i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m i\u00e7eren hedef odakl\u0131 kimlik av\u0131 e-postalar\u0131 kullanm\u0131\u015ft\u0131r. Sald\u0131rganlar, bilgisayarlar\u0131n kameralar\u0131n\u0131 ve mikrofonlar\u0131n\u0131 uzaktan a\u00e7\u0131p siber casusluk i\u00e7in kullanmay\u0131 ama\u00e7lam\u0131\u015ft\u0131r.<\/td><\/tr><tr><td><strong>Stuxnet<br><\/strong>\u0130ran n\u00fckleer program\u0131nda kullan\u0131lan cihazlara n\u00fcfuz etmedeki ba\u015far\u0131s\u0131yla bilinen, bu k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n amac\u0131, n\u00fckleer zenginle\u015ftirme i\u015flemleri i\u00e7in kullan\u0131lan santrif\u00fcjlerin ayarlar\u0131n\u0131, rotor h\u0131zlar\u0131n\u0131 y\u00fckselterek ve d\u00fc\u015f\u00fcrerek makineleri tahrip etmekti. 200.000&#8217;den fazla bilgisayara bula\u015ft\u0131\u011f\u0131 ve \u0130ran&#8217;\u0131n Natanz n\u00fckleer tesisinde yakla\u015f\u0131k 1.000 santrif\u00fcj\u00fc yok etti\u011fi biliniyor.<\/td><\/tr><tr><td><strong>Sykipot<\/strong><br>Sald\u0131rganlar, 2006-2013 y\u0131llar\u0131 aras\u0131nda ABD ve \u0130ngiltere kurulu\u015flar\u0131na kar\u015f\u0131 APT sald\u0131r\u0131lar\u0131 ba\u015flatmak i\u00e7in Acrobat ve Adobe Reader g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanm\u0131\u015ft\u0131r.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 id=\"en-guncel-apt-saldirilari\" class=\"wp-block-heading\">En G\u00fcncel APT Sald\u0131r\u0131lar\u0131<\/h2>\n\n\n\n<p><a href=\"https:\/\/cybersecuritynews.com\/apt-attack\/\" target=\"_blank\" rel=\"noreferrer noopener\">Cybersecuritynews<\/a>&#8216;in 2021 APT sald\u0131r\u0131lar\u0131 listesinde;<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Japonya&#8217;y\u0131 tehdit eden A41APT vakas\u0131 (31 Ocak),<\/li><li>Pakistan ve di\u011fer G\u00fcney Asya b\u00f6lgelerini hedefleyen Confucius APT Android casus yaz\u0131l\u0131m\u0131 (17 \u015eubat),<\/li><li>Kimlik av\u0131 sald\u0131r\u0131lar\u0131 ile ABD ve \u0130srail t\u0131bbi ara\u015ft\u0131rma personelini etkileyen BadBlood: TA453 (30 Mart) vakas\u0131 gibi \u00e7ok say\u0131da tehdit yer almaktad\u0131r.<\/li><\/ul>\n\n\n\n<p>Ayr\u0131ca Kaspersky&#8217;nin, geli\u015fmi\u015f kal\u0131c\u0131 tehdit (APT) etkinliklerine dair 2021 y\u0131l\u0131n\u0131n ilk \u00e7eyre\u011findeki raporuna g\u00f6re;<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Aral\u0131k ay\u0131nda, Kuzey Amerika, Avrupa, Orta Do\u011fu ve Asya&#8217;daki bir\u00e7ok b\u00fcy\u00fck \u015firket ve devlet kurumu da dahil olmak \u00fczere 18.000&#8217;den fazla SolarWinds m\u00fc\u015fterisinin a\u011flar\u0131nda <strong>Sunburst<\/strong> adl\u0131 \u00f6zel bir arka kap\u0131n\u0131n konu\u015fland\u0131r\u0131ld\u0131\u011f\u0131 ortaya \u00e7\u0131km\u0131\u015ft\u0131r. <\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>2 Mart&#8217;ta Microsoft, <strong>HAFNIUM<\/strong> adl\u0131, Microsoft Exchange s\u0131f\u0131r\u0131nc\u0131 g\u00fcn g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n istismar edildi\u011fi yeni bir APT sald\u0131r\u0131s\u0131 bildirmi\u015ftir. Avrupa ve Amerika Birle\u015fik Devletleri&#8217;ndeki sunucularda g\u00f6zlenen ve sunuculardan baz\u0131lar\u0131n\u0131n, farkl\u0131 sald\u0131rganlar taraf\u0131ndan bir\u00e7ok kez hedef al\u0131nd\u0131\u011f\u0131 sald\u0131r\u0131lar, APT sald\u0131r\u0131lar\u0131n\u0131n art\u0131k birden fazla grup taraf\u0131ndan kullan\u0131labilece\u011fini de g\u00f6stermi\u015ftir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>24 \u015eubat&#8217;ta Ukrayna Ulusal G\u00fcvenlik Savunma Konseyi (NSDC),  k\u00f6t\u00fc niyetli belgeleri Ukrayna kamu yetkililerine da\u011f\u0131tmak i\u00e7in ulusal belge dola\u015f\u0131m sistemini (SEI EB) istismar eden bir tehdit konusunda kamuoyunu uyarm\u0131\u015ft\u0131r. Kaspersky bu sald\u0131r\u0131y\u0131 <strong>Gamaredon<\/strong> sald\u0131r\u0131lar\u0131 ile ba\u011fda\u015ft\u0131rmaktad\u0131r.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>K\u0131sa s\u00fcre \u00f6nce, telekom\u00fcnikasyon veya havac\u0131l\u0131k \u015firketleri gibi y\u00fcksek profilli Tunus&#8217;lu kurulu\u015flar\u0131 hedefleyen bir faaliyet <strong>Lyceum\/Hexane <\/strong>tehdit grubuna atfedilmi\u015ftir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Ferocious Kitten,<\/strong> 2015&#8217;ten beri Fars\u00e7a konu\u015fan ki\u015filere kar\u015f\u0131 aktif olan ve merkezi \u0130ran&#8217;da olan bir APT grubudur. Kulland\u0131\u011f\u0131 k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m <strong>MarkiRAT <\/strong>olarak adland\u0131r\u0131lmaktad\u0131r. Tu\u015f vuru\u015flar\u0131n\u0131 ve pano i\u00e7eri\u011fini kaydetmek, dosya indirme ve y\u00fcklemeleri sa\u011flamak ve kurban\u0131n cihaz\u0131nda rastgele komutlar y\u00fcr\u00fctmek i\u00e7in kullan\u0131lmaktad\u0131r. Kal\u0131c\u0131l\u0131k y\u00f6ntemi olarak Telegram ve Chrome uygulamalar\u0131n\u0131 ele ge\u00e7irmeyi ama\u00e7layan varyantlar\u0131 oldu\u011fu biliniyor. <br><br><\/li><li><strong>Lazarus <\/strong>grubunun d\u00fcnya \u00e7ap\u0131ndaki g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131n\u0131 hedefleyen sald\u0131r\u0131s\u0131, taray\u0131c\u0131lardaki s\u0131f\u0131r\u0131nc\u0131 g\u00fcn g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanm\u0131\u015ft\u0131r.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Karkadann,<\/strong> Ekim 2020&#8217;den bu yana Orta Do\u011fu&#8217;daki devlet kurumlar\u0131n\u0131 ve haber kurulu\u015flar\u0131n\u0131 hedef alan bir di\u011fer APT tehdidir.  <\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Kimsuky<\/strong> grubunun da G\u00fcney Koreli bir hisse senedi al\u0131m sat\u0131m uygulamas\u0131nda k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n\u0131 da\u011f\u0131tmak i\u00e7in yeni bir y\u00f6ntem benimsedi\u011fi ke\u015ffedilmi\u015ftir.<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>25 Ocak&#8217;ta Google Tehdit Analizi Grubu (TAG), Kuzey Kore ile ilgili bir tehdit akt\u00f6r\u00fcn\u00fcn g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131n\u0131 hedef ald\u0131\u011f\u0131n\u0131 duyurmu\u015ftur. Sosyal medya arac\u0131l\u0131\u011f\u0131yla g\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131yla ileti\u015fime ge\u00e7erek g\u00fcvenli\u011fi ihlal edilmi\u015f bir Visual Studio proje dosyas\u0131 teslim eden sald\u0131rgan onlar\u0131 bloglar\u0131na \u00e7ekip bir t\u00fcr Chrome istismar\u0131 y\u00fcklemeyi ba\u015farm\u0131\u015ft\u0131r. Blogdaki birka\u00e7 altyap\u0131n\u0131n, Lazarus grubunun <strong>ThreatNeedle<\/strong> k\u00fcmesi hakk\u0131nda daha \u00f6nce Karspersky&#8217;nin yay\u0131nlad\u0131\u011f\u0131 raporla \u00f6rt\u00fc\u015ft\u00fc\u011f\u00fc do\u011frulanabiliyor. <\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>Ayr\u0131ca, raporda<strong> Kazuar<\/strong>, <strong>EdwardsPheasant<\/strong>, <strong>MuddyWater,<\/strong> <strong>CookieTime<\/strong>, <strong>TurtlePower, Dropping Elephant<\/strong> (<strong>Patchwork, Chinastrats<\/strong>), <strong>BroStealer <\/strong>gibi \u00e7ok say\u0131da tehdidin de ad\u0131 ge\u00e7iyor.<\/li><\/ul>\n\n\n\n<h2 id=\"ozet\" class=\"wp-block-heading\">\u00d6zet<\/h2>\n\n\n\n<p>APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit); korsanlar\u0131n gizli devlet ve \u015firket verileri i\u00e7in s\u00fcrekli eri\u015fime sahip olmalar\u0131n\u0131 sa\u011flad\u0131\u011f\u0131ndan son derece tehlikeli bir siber sald\u0131r\u0131 t\u00fcr\u00fcd\u00fcr. APT hacker gruplar\u0131; savunma, finansal hizmetler, hukuk, sanayi, telekom alanlar\u0131nda \u00e7e\u015fitli \u015firketleri hedefler. Hedeflenen kuruma g\u00f6re de\u011fi\u015fse de \u00e7o\u011funlukla ama\u00e7 veri ihlali, casusluk ve sabotajd\u0131r.<\/p>\n\n\n\n<p>APT tespit edilmesi kolay olmamas\u0131na ra\u011fmen uygun \u00f6nlemler al\u0131nd\u0131\u011f\u0131nda etkili bir \u015fekilde \u00f6nlenebildi\u011finden, APT Nedir? sorusu \u00fclkelerin ve \u015firketlerin siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmalar\u0131 a\u00e7\u0131s\u0131ndan kritiktir.<\/p>\n","protected":false},"excerpt":{"rendered":"APT&#8217;yi anlamak, maruz kald\u0131\u011f\u0131n\u0131zda h\u0131zla yan\u0131t vermenize ve riskleri en aza indirmeniz i\u00e7in do\u011fru stratejileri se\u00e7menize yard\u0131mc\u0131 olabilir. \n","protected":false},"author":1,"featured_media":46519,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_relevanssi_hide_post":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"43938,42311,6909,21148,10431,14998","_relevanssi_noindex_reason":"","footnotes":""},"categories":[656,654,657,655,138],"tags":[],"class_list":{"0":"post-44596","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-alpha-ssl","8":"category-comodo-ssl","9":"category-ev-ssl","10":"category-globalsign-ssl","11":"category-ipuclari"},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>APT Nedir? &#8226; Turhost Blog<\/title>\n<meta name=\"description\" content=\"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.turhost.com/blog\/apt-nedir\/\" \/>\n<meta property=\"og:locale\" content=\"tr_TR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"APT Nedir? &#8226; Turhost Blog\" \/>\n<meta property=\"og:description\" content=\"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.turhost.com/blog\/apt-nedir\/\" \/>\n<meta property=\"og:site_name\" content=\"Turhost Blog\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-19T05:53:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-11-26T06:40:57+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"1000\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Turhost\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Yazan:\" \/>\n\t<meta name=\"twitter:data1\" content=\"Turhost\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tahmini okuma s\u00fcresi\" \/>\n\t<meta name=\"twitter:data2\" content=\"14 dakika\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/\",\"url\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/\",\"name\":\"APT Nedir? &#8226; Turhost Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.turhost.com/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg\",\"datePublished\":\"2021-08-19T05:53:00+00:00\",\"dateModified\":\"2021-11-26T06:40:57+00:00\",\"author\":{\"@id\":\"https:\/\/www.turhost.com/blog\/#\/schema\/person\/dd8970d865df6ed4f742fe30c308ad1c\"},\"description\":\"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/#breadcrumb\"},\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.turhost.com/blog\/apt-nedir\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage\",\"url\":\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg\",\"contentUrl\":\"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg\",\"width\":1000,\"height\":1000},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.turhost.com/blog\/apt-nedir\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/www.turhost.com/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u0130pu\u00e7lar\u0131\",\"item\":\"https:\/\/www.turhost.com/blog\/ipuclari\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"APT Nedir?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.turhost.com/blog\/#website\",\"url\":\"https:\/\/www.turhost.com/blog\/\",\"name\":\"Turhost Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.turhost.com/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"tr\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.turhost.com/blog\/#\/schema\/person\/dd8970d865df6ed4f742fe30c308ad1c\",\"name\":\"Turhost\",\"sameAs\":[\"http:\/\/www.turhost.com\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"APT Nedir? &#8226; Turhost Blog","description":"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.turhost.com/blog\/apt-nedir\/","og_locale":"tr_TR","og_type":"article","og_title":"APT Nedir? &#8226; Turhost Blog","og_description":"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.","og_url":"https:\/\/www.turhost.com/blog\/apt-nedir\/","og_site_name":"Turhost Blog","article_published_time":"2021-08-19T05:53:00+00:00","article_modified_time":"2021-11-26T06:40:57+00:00","og_image":[{"width":1000,"height":1000,"url":"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg","type":"image\/jpeg"}],"author":"Turhost","twitter_card":"summary_large_image","twitter_misc":{"Yazan:":"Turhost","Tahmini okuma s\u00fcresi":"14 dakika"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/","url":"https:\/\/www.turhost.com/blog\/apt-nedir\/","name":"APT Nedir? &#8226; Turhost Blog","isPartOf":{"@id":"https:\/\/www.turhost.com/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage"},"image":{"@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage"},"thumbnailUrl":"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg","datePublished":"2021-08-19T05:53:00+00:00","dateModified":"2021-11-26T06:40:57+00:00","author":{"@id":"https:\/\/www.turhost.com/blog\/#\/schema\/person\/dd8970d865df6ed4f742fe30c308ad1c"},"description":"APT (Geli\u015fmi\u015f Kal\u0131c\u0131 Tehdit) Nedir? sorusu siber g\u00fcvenlik tehditlerine kar\u015f\u0131 haz\u0131rl\u0131kl\u0131 olmak isteyenler a\u00e7\u0131s\u0131ndan kritiktir.","breadcrumb":{"@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/#breadcrumb"},"inLanguage":"tr","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.turhost.com/blog\/apt-nedir\/"]}]},{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/#primaryimage","url":"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg","contentUrl":"https:\/\/www.turhost.com/blog\/wp-content\/uploads\/2021\/07\/kapak-3.jpg","width":1000,"height":1000},{"@type":"BreadcrumbList","@id":"https:\/\/www.turhost.com/blog\/apt-nedir\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/www.turhost.com/blog\/"},{"@type":"ListItem","position":2,"name":"\u0130pu\u00e7lar\u0131","item":"https:\/\/www.turhost.com/blog\/ipuclari\/"},{"@type":"ListItem","position":3,"name":"APT Nedir?"}]},{"@type":"WebSite","@id":"https:\/\/www.turhost.com/blog\/#website","url":"https:\/\/www.turhost.com/blog\/","name":"Turhost Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.turhost.com/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"tr"},{"@type":"Person","@id":"https:\/\/www.turhost.com/blog\/#\/schema\/person\/dd8970d865df6ed4f742fe30c308ad1c","name":"Turhost","sameAs":["http:\/\/www.turhost.com\/"]}]}},"_links":{"self":[{"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/posts\/44596","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/comments?post=44596"}],"version-history":[{"count":226,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/posts\/44596\/revisions"}],"predecessor-version":[{"id":46611,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/posts\/44596\/revisions\/46611"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/media\/46519"}],"wp:attachment":[{"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/media?parent=44596"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/categories?post=44596"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.turhost.com/blog\/wp-json\/wp\/v2\/tags?post=44596"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}