Pharming is a type of cyber-attack that redirects users to fraudulent websites or manipulates their computer systems to collect personal or financial information, such as login credentials, credit card details, or social security numbers. It is a sophisticated type of fraudulent activity that exploits the foundation of how internet browsing works, which is that the sequence of letters that form an internet address, such as www.google.com, have to be converted into an IP address by a DNS server for the connection to proceed. Pharming is like phishing in that it is a threat that tricks users into divulging private information, but instead of relying on email as the attack vector, pharming uses malicious code executed on the victim’s device to redirect to an attacker-controlled website.
Pharming involves two stages: Firstly, the hackers install malicious code on the victims computer or server. Secondly, the code sends the victim to a fake website, where they may be deceived into providing personal information. Computer pharming doesn’t require that initial click to take the victim to a fraudulent website. There are two main types of pharming attack that cybercriminals use to target and exploit weak DNS caches and servers. One attack vector involves the installation of malware, while the other is a more traditional approach that aims to corrupt or poison the DNS cache and server.
To protect against pharming attacks, it is important to stay vigilant and employ cybersecurity best practices. Here are some tips to protect yourself from pharming:
- Keep your computer and software updated.
- Use a trusted internet service provider (ISP) that has robust security measures and a proven history of security.
- Use an anti-virus software and a good firewall.
- Be aware of suspicious warning signs, verify the authenticity of websites, and identify social engineering tactics.
Pharming is a form of phishing that uses a DNS system to send a user to a fake website. Instead of sending an email that looks like its from a users bank, pharming directs victims to a website that looks like their banks website.
