ARL Logo
Risky Thinking
On Risk Management, Business Continuity, and Security
23 February, 2018
Business Impact Analysis
(the easy way)
Try the

Pharming (Definition)

Pharming is the deliberate corruption of DNS (domain name service) caches so that when a user types the name of a particular website into their browser (or other program), the user is misdirected to a forged website — typically with the intention of capturing personal user information.

SSL (Secure Socket Layer) certificates offer some protection against pharming, since the https protocol can authenticate the identity of a website. However, a naïve user may not spot that a website should be secure when it isn't, or that this is a symptom of a pharming attack.

It should be remembered that protocols other than HTTP (e.g. POP3, IMAP, FTP) are vulnerable to pharming. Pharming can also be used to conduct man-in-the-middle attacks against vulnerable protocols.

See Also: Phishing.

You are welcome to use these definitions for any purpose provided that an acknowledgement is made
to and (if you're using HTML) you provide a link back to this site.

[ Back to Risk Glossary ]

Risky Thinking Newsletter

Are you responsible for Business Continuity, Disaster Recovery, or Risk Management in your organization? Then you may wish to receive a free subscription to the the monthly Risky Thinking Newsletter. It contains news, opinions and articles of interest to people working in these areas.

View a sample issue, or click here to subscribe.

Recent articles have included:

If you've reviewed a few business continuity plans, you may have noticed how often teams are expected to assemble and work from a nearby hotel. Here's why that may not be a good idea. Read more...

© Albion Research Ltd. 2018