ARL Logo
Risky Thinking
On Risk Management, Business Continuity, and Security
24 April, 2017
Does everyone remember the plan?
It's a problem.

Pharming (Definition)

Pharming is the deliberate corruption of DNS (domain name service) caches so that when a user types the name of a particular website into their browser (or other program), the user is misdirected to a forged website — typically with the intention of capturing personal user information.

SSL (Secure Socket Layer) certificates offer some protection against pharming, since the https protocol can authenticate the identity of a website. However, a naïve user may not spot that a website should be secure when it isn't, or that this is a symptom of a pharming attack.

It should be remembered that protocols other than HTTP (e.g. POP3, IMAP, FTP) are vulnerable to pharming. Pharming can also be used to conduct man-in-the-middle attacks against vulnerable protocols.

See Also: Phishing.

You are welcome to use these definitions for any purpose provided that an acknowledgement is made
to and (if you're using HTML) you provide a link back to this site.

[ Back to Risk Glossary ]

Risky Thinking Newsletter

Are you responsible for Business Continuity, Disaster Recovery, or Risk Management in your organization? Then you may wish to receive a free subscription to the the monthly Risky Thinking Newsletter. It contains news, opinions and articles of interest to people working in these areas.

View a sample issue, or click here to subscribe.

Recent articles have included:

Some imporant lessons from Hurricane Katrina are put into action while waiting for Hurricane Gustav... Read more...

© Albion Research Ltd. 2017