As soon as almost all computer users already got used to -- or at least heard about -- the word "phishing", another somewhat confusing word appeared not long ago. Pharming. Does it differ from phishing -- and if yes, how?
Two Pharmings
Actually, two completely different fields use the term "pharming" now. We can say there exist two separate "pharmings".
If genetics or businessmen from pharmaceutical industry are talking about pharming (spelled like that) it might have nothing to do with computers. This word has long been familiar to genetic engineers. For them, it's a merger of "farming" and "pharmaceutical" and means the genetic engineering technique -- inserting extraneous genes into host animals or plants in order to make them produce some pharmaceutical product. Although it is a very interesting matter, this article is not about it.
As for PC users, the term "phishing" recently emerged to denote exploitation of a vulnerability in the DNS server software caused by malicious code. This code allows the cybercriminal who contaminated this PC with it to redirect traffic from one IP-address to the one he specified. In other words, a user who types in a URL goes to another web site, not the one he wanted to--and isn't supposed to notice the difference.
Usually such a website is disguised to look like a legitimate one -- of a bank or a credit card company. Sites of this kind are used solely to steal users' confidential information such as passwords, PIN numbers, SSNs and account numbers.
Dangerous Scams
A fake website that's what "traditional" phishing has in common with pharming. This scam can fool even an experienced computer user, and it makes pharming a grave threat. The danger here is that users don't click an email link to get to a counterfeit website.
Most people enter their personal information, unaware of possible fraud. Why should they suspect anything if they type the URL themselves, not following any links in a suspiciously-looking email? Unfortunately, "ordinary" phishers are also getting smarter. They eagerly learn; there is too much money involved to make criminals earnest students. At first phishing consisted only of a social engineering scam in which phishers spammed consumer e-mail accounts with letters ostensibly from banks. The more people got aware of the scam, the less spelling mistakes these messages contained, and the more fraudulent websites looked like legitimate ones.
Since about November 2004 there has been a lot of publications of a scheme which at first was seen as a new kind of phishing. This technique includes contaminating a PC with a Trojan horse program. The problem is that this Trojan contains a keylogger which lurks at the background until the user of the infected PC visits one of the specified websites. Then the keylogger comes to life to do what it was created for -- to steal information.
It seems that this technique is actually a separate scam aimed at stealing personal information and such attacks are on the rise. Security vendor Symantec warns about commercialisation of malware -- cybercriminals prefer cash to fun, so various kinds of information-stealing software are used more actively.
Spy Audit survey made by ISP Earthlink and Webroot Software also shows disturbing figures - 33.17% PCs contaminated with some program with information stealing capability.
However, more sophisticated identity theft attempts coexist with "old-fashioned" phishing scams. That is why users should not forget the advice which they all are likely to have learned by heart:
Alexandra Gamanenko currently works at Raytown Corporation, LLC -- an independent software developing company that provides various solutions for information security.
The company's R&D department created an innovative technology, which disables information-stealing programs. Learn more -- visit the company's website http://www.anti-keyloggers.com
When it comes to reporting Internet scams most of us... Read More
Computer security for most can be described in 2 words,... Read More
If you are wondering how to fight spyware for safe... Read More
Identity Theft and Your Personal Information -------------------------------------------- Identity theft is... Read More
1. Importance of a Virus Scanner: A Antivirus program can... Read More
When it comes to a secure website and passwords it... Read More
If you are a parent, as am I, I think... Read More
With the advent of the World Wide Web, a whole... Read More
First off I should explain what phishing is. Phishing is... Read More
First, let's do a little recap'. As I stated in... Read More
A little bit of time invested into learning about internet... Read More
A couple of days ago, I was searching for a... Read More
First the basic definition of Spyware: It is a type... Read More
If you are a parent, you have probably wondered at... Read More
You've seen it in the news - 40 million credit... Read More
May. 16th 2005 - MicroWorld has reported the discovery of... Read More
From the "Ask Booster" column in the June 17, 2005... Read More
They're out there. Individuals trying to make a quick buck... Read More
When the Internet first came about, it was realized it... Read More
Spies, spyware, internet parasites are among what they are usually... Read More
In recent days, I was one of the unfortunate persons... Read More
Spyware symptoms happen when your computer gets bogged down with... Read More
While clicking from site to site on the internet you... Read More
NETWORK SECURITIES: IMPORTANCE OF SECURITIESComputers and securities must form a... Read More
Saturday, MasterCard blamed a vendor of ALL credit card providers... Read More
Every single time you access a website, you leave tracks.... Read More
This really chapped my lips...I recently bought a new computer.... Read More
Today,on most internet user's computers, we have the ability to... Read More
If you constantly deal with bank or electronic accounts, it... Read More
If you are a parent, you have probably wondered at... Read More
A firewall is a system or gateway that prevents unauthorized... Read More
Saturday, MasterCard blamed a vendor of ALL credit card providers... Read More
Some months ago, before there was much publicity regarding phishing... Read More
Did you know...? 1 in 5 children who use computer... Read More
Everyone should eliminate spyware and adware from your hard drive... Read More
Someone recently told me, "You would have to be a... Read More
Over £5 billion pounds was spent on online shopping in... Read More
A few nights ago I received an email from "2CO"... Read More
There has not been a time in the history of... Read More
Remember the television show about the nosy neighbor Mrs. Kravitz... Read More
My first experience with a spyware BHO based infection was... Read More
Ok, ok, I know you've seen them. All those pop... Read More
The top five online scams on the Internet hit nearly... Read More
If you are wondering how to fight spyware for safe... Read More
Credit card fraud is a growing problem for online businesses... Read More
It's a sad statistic, but hundreds of unsuspecting kids are... Read More
What is Phishing? Phishing is a relatively newly coined term... Read More
May. 16th 2005 - MicroWorld has reported the discovery of... Read More
Is your enterprise following the rules?The bulk of financial information... Read More
Industrial Espionage. These methodologies are being used on a daily... Read More
|
|