On Risk Management, Business Continuity, and Security
|21 November, 2017|
Pharming is the deliberate corruption of DNS (domain name service) caches so that when a user types the name of a particular website into their browser (or other program), the user is misdirected to a forged website — typically with the intention of capturing personal user information.
SSL (Secure Socket Layer) certificates offer some protection against pharming, since the https protocol can authenticate the identity of a website. However, a naïve user may not spot that a website should be secure when it isn't, or that this is a symptom of a pharming attack.
It should be remembered that protocols other than HTTP (e.g. POP3, IMAP, FTP) are vulnerable to pharming. Pharming can also be used to conduct man-in-the-middle attacks against vulnerable protocols.
See Also: Phishing.
You are welcome to use these definitions for any purpose provided that an acknowledgement is made
to www.riskythinking.com and (if you're using HTML) you provide a link back to this site.
Risky Thinking Newsletter
Are you responsible for Business Continuity, Disaster Recovery, or Risk Management in your organization? Then you may wish to receive a free subscription to the the monthly Risky Thinking Newsletter. It contains news, opinions and articles of interest to people working in these areas.
Recent articles have included:
© Albion Research Ltd. 2017