How Were Cyber ​​Attacks Organized on HGS and Anadolu Sigorta? Was Personal Data Stolen?

Latest Developments in Cyber ​​Security: Anadolu Sigorta and PTT Attacks

What happened in Turkey recently cyber attacks, attracted the attention of many people. Anadolu Sigorta and PTT's applications became the target of cyber attackers. These attacks are sent to users' phones abusive notifications ve blackmail showed itself with its content. In particular, the events that took place in Anadolu Sigorta's "Sigortam Cepte" application once again revealed the importance of cyber security.

Details of the Attacks

On the evening of December 9, people using Anadolu Sigorta's application encountered disturbing notifications on their phones. These notifications were about users being asked to transfer money to a specific wallet. Bitcoin The following day, on December 10, PTT's "HGS" application was also subject to a similar attack. Users were again sent profanity-filled notifications, stating that their data was in danger.

Experts' Evaluation

BBC in Turkish Cybersecurity experts who spoke with drew attention to the fact that the same cyber attackers were behind both attacks. This situation increased users' concerns. In particular, Anadolu Sigorta and PTT's statements indicated that there was no data leak and that the applications were checked and put back into service. However, cybersecurity experts emphasized that more precautions should be taken to prevent such incidents from occurring again.

Reasons Behind Cyber ​​Attacks

The basis of the attacks is, Application Programming Interface (API) keys are not securely protected. Experts say that attackers can find these keys and transfer them to the OneSignal service. unauthorized access Cyber ​​security expert Ayşe Aktağ states that API keys must be stored correctly to prevent such vulnerabilities.

OneSignal and Vulnerabilities

OneSignal is a popular service for sending notifications, but its security vulnerability has put many users at risk. USOM (National Cyber ​​Incident Response Center) announced that this security vulnerability occurred when OneSignal's virtual keys were seized by cyber attackers. It was emphasized that users should not trust such notifications and should not make any cryptocurrency transfers.

Ways Users Can Protect Themselves

Users exposed to cyber attacks have begun to question whether their data is safe. Experts state that users should immediately change their application passwords, and that applications and devices should be updated regularly. Ayşe Aktağ recommends that users perform regular security tests, as well as securely storing API keys.

Important Warnings and Recommendations

  • Password Change: Users should change their app passwords when they receive suspicious notifications.
  • Update: Keeping applications and devices up to date will minimize security vulnerabilities.
  • Security Tests: Security tests should be performed regularly.
  • Do Not Rely on Suspicious Notifications: Users should not rely on blackmail notifications.

Conclusion

As can be seen, cyber attacks are an increasing threat. These incidents experienced by large institutions such as Anadolu Sigorta and PTT have once again revealed the importance of cyber security. Users and institutions need to be more careful and take the necessary precautions against such attacks. In order to prevent similar incidents in the future, it is inevitable to increase security standards.