{"id":188284,"date":"2026-03-19T09:54:11","date_gmt":"2026-03-19T09:54:11","guid":{"rendered":"https:\/\/kamucalisani.net\/?p=188284"},"modified":"2026-03-19T09:54:11","modified_gmt":"2026-03-19T09:54:11","slug":"milyonlarca-iphone-risk-altinda-onemli-bir-guvenlik-acigi-tespit-edildi","status":"publish","type":"post","link":"https:\/\/kamucalisani.net\/index.php\/2026\/03\/19\/milyonlarca-iphone-risk-altinda-onemli-bir-guvenlik-acigi-tespit-edildi\/","title":{"rendered":"Milyonlarca iPhone risk alt\u0131nda: \u00d6nemli bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 tespit edildi"},"content":{"rendered":"
\n
<\/span> Mobil g\u00fcvenlik alan\u0131nda faaliyet g\u00f6steren Lookout, iPhone kullan\u0131c\u0131lar\u0131n\u0131 hedef alan\u00a0DarkSword <\/strong>isimli son derece geli\u015fmi\u015f bir siber sald\u0131r\u0131 zincirini ortaya \u00e7\u0131kard\u0131.\u00a0 <\/figure>\n<\/section>\n
\n

iOS 18.4 ile 18.6.2 aras\u0131 s\u00fcr\u00fcmleri kullananlar\u0131 etkiliyor<\/b><\/p>\n

Lookout Threat Labs taraf\u0131ndan tespit edilen DarkSword, iOS 18.4 ile 18.6.2 s\u00fcr\u00fcmleri aras\u0131nda \u00e7al\u0131\u015fan cihazlar\u0131 hedef al\u0131yor. <\/strong>Sald\u0131r\u0131n\u0131n en dikkat \u00e7ekici y\u00f6nlerinden biri \u201chit-and-run\u201d<\/strong> yani vur-ka\u00e7 tekni\u011fini kullanmas\u0131. Bu y\u00f6ntem sayesinde zararl\u0131 yaz\u0131l\u0131m, cihazdaki hassas verileri dakikalar i\u00e7inde ele ge\u00e7iriyor ve ard\u0131ndan iz b\u0131rakmadan kendini silerek tespit edilmesini zorla\u015ft\u0131r\u0131yor.<\/strong> \u00c7al\u0131nan veriler aras\u0131nda kullan\u0131c\u0131 kimlik bilgileri, mesajla\u015fma uygulamalar\u0131ndaki i\u00e7erikler, e-postalar, iCloud verileri ve kripto para c\u00fczdanlar\u0131 bulunuyor.<\/p>\n

Ara\u015ft\u0131rma s\u00fcreci Google ve iVerify ile i\u015f birli\u011fi i\u00e7inde y\u00fcr\u00fct\u00fcld\u00fc.\u00a0Ara\u015ft\u0131rmaya g\u00f6re DarkSword en az Kas\u0131m 2025\u2019ten bu yana aktif olarak kullan\u0131l\u0131yor. Sald\u0131r\u0131n\u0131n dikkat \u00e7eken y\u00f6nlerinden biri ise tek bir grup yerine farkl\u0131 tehdit akt\u00f6rleri taraf\u0131ndan benimsenmi\u015f olmas\u0131. Google, hem ticari casus yaz\u0131l\u0131m \u00fcreticilerinin hem de devlet destekli oldu\u011fu d\u00fc\u015f\u00fcn\u00fclen gruplar\u0131n bu exploit zincirini kulland\u0131\u011f\u0131n\u0131 tespit etti. Hedef al\u0131nan \u00fclkeler aras\u0131nda T\u00fcrkiye, Suudi Arabistan, Malezya ve Ukrayna da yer al\u0131yor.<\/p>\n

Sald\u0131r\u0131 genellikle kullan\u0131c\u0131lar\u0131n zararl\u0131 bir web sitesini ziyaret etmesiyle ba\u015fl\u0131yor. <\/strong>Teknik a\u00e7\u0131dan DarkSword\u2019un, Safari ve WebGPU bile\u015fenlerindeki g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 kullanarak iOS\u2019in sandbox korumas\u0131n\u0131 a\u015fabildi\u011fi <\/strong>belirtiliyor. Bu sayede sald\u0131rganlar cihazda y\u00fcksek yetkilerle kod \u00e7al\u0131\u015ft\u0131rabiliyor ve hem ki\u015fisel hem kurumsal verilere geni\u015f eri\u015fim elde edebiliyor. Zararl\u0131 yaz\u0131l\u0131m, SMS ve iMessage i\u00e7eriklerinden WhatsApp ve Telegram yaz\u0131\u015fmalar\u0131na, Wi-Fi \u015fifrelerinden konum ge\u00e7mi\u015fine kadar olduk\u00e7a geni\u015f bir veri setini hedef al\u0131yor.<\/p>\n

Apple’\u0131n DarkSword taraf\u0131ndan istismar edilen g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131 en son iOS s\u00fcr\u00fcmlerinde yamad\u0131\u011f\u0131 <\/strong>belirtiliyor. Bu nedenle Lookout, kurulu\u015flar\u0131n ve kullan\u0131c\u0131lar\u0131n cihazlar\u0131n\u0131 en az iOS 18.7.3<\/strong> veya iOS 26.3′<\/strong>e g\u00fcncellemesi gerekti\u011fini s\u00f6yl\u00fcyor.<\/p>\n<\/section>\n

Kaynak\u00a0 :\u00a0https:\/\/www.donanimhaber.com\/milyonlarca-iphone-u-etkileyen-bir-guvenlik-acigi-tespit-edildi–203417<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

Mobil g\u00fcvenlik alan\u0131nda faaliyet g\u00f6steren Lookout, iPhone kullan\u0131c\u0131lar\u0131n\u0131 hedef alan\u00a0DarkSword isimli son derece geli\u015fmi\u015f bir siber sald\u0131r\u0131 zincirini ortaya \u00e7\u0131kard\u0131.\u00a0 iOS 18.4 ile 18.6.2 aras\u0131 s\u00fcr\u00fcmleri kullananlar\u0131 etkiliyor Lookout …<\/p>\n","protected":false},"author":1,"featured_media":188285,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[728],"class_list":["post-188284","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji","tag-veri"],"_links":{"self":[{"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/posts\/188284","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/comments?post=188284"}],"version-history":[{"count":1,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/posts\/188284\/revisions"}],"predecessor-version":[{"id":188287,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/posts\/188284\/revisions\/188287"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/media\/188285"}],"wp:attachment":[{"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/media?parent=188284"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/categories?post=188284"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kamucalisani.net\/index.php\/wp-json\/wp\/v2\/tags?post=188284"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}