ARL Logo
Risky Thinking
On Risk Management, Business Continuity, and Security
19 September, 2017
Do your staff know what to do in an emergency?
With Plan424 they will.

Pharming (Definition)

Pharming is the deliberate corruption of DNS (domain name service) caches so that when a user types the name of a particular website into their browser (or other program), the user is misdirected to a forged website — typically with the intention of capturing personal user information.

SSL (Secure Socket Layer) certificates offer some protection against pharming, since the https protocol can authenticate the identity of a website. However, a naïve user may not spot that a website should be secure when it isn't, or that this is a symptom of a pharming attack.

It should be remembered that protocols other than HTTP (e.g. POP3, IMAP, FTP) are vulnerable to pharming. Pharming can also be used to conduct man-in-the-middle attacks against vulnerable protocols.

See Also: Phishing.

You are welcome to use these definitions for any purpose provided that an acknowledgement is made
to www.riskythinking.com and (if you're using HTML) you provide a link back to this site.

[ Back to Risk Glossary ]

Risky Thinking Newsletter

Are you responsible for Business Continuity, Disaster Recovery, or Risk Management in your organization? Then you may wish to receive a free subscription to the the monthly Risky Thinking Newsletter. It contains news, opinions and articles of interest to people working in these areas.

View a sample issue, or click here to subscribe.

Recent articles have included:

Ottawa isn't in a fault zone. So when a minor earthquake struck, nobody had been taught what to do and their instincts weren't correct. Read more...

© Albion Research Ltd. 2017