|
|
As soon as almost all computer users already got used to -- or at least heard about -- the word "phishing", another somewhat confusing word appeared. Pharming. Does it differ from phishing -- if yes, how?
Two Pharmings
Actually, two completely different fields use the term "pharming" now. We can say there exist two separate "pharmings".
If genetics or businessmen from pharmaceutical industry are talking about pharming (spelled like that) it might have nothing to do with computers. This word has long been familiar to genetic engineers. For them, it's a merger of "farming" and "pharmaceutical" and means the genetic engineering technique -- inserting extraneous genes into host animals or plants in order to make them produce some pharmaceutical product. Although it is very interesting matter, this article isn't about it.
As for PC users, the term "pharming" recently emerged to denote exploitation of a vulnerability in the DNS server software caused by malicious code. This code allows the cybercriminal who contaminated this PC with it to redirect traffic from one IP-address to the one he specified. In other words, a user who types in a URL goes to another web site, not the one he wanted to--and isn't supposed to notice the difference.
Usually such a website is disguised to look like a legitimate one -- of a bank or a credit card company. Sites of this kind are used solely to steal users' confidential information such as passwords, PIN numbers, SSNs and account numbers.
Dangerous Scams
A fake website that's what "traditional" phishing has in common with pharming. This scam can fool even an experienced computer user, and it makes pharming a grave threat. The danger here is that users don't click an email link to get to a counterfeit website.
Most people enter their personal information, unaware of possible fraud. Why should they suspect anything if they type the URL themselves, not following any links in a suspiciously-looking email?
Unfortunately, "ordinary" phishers are also getting smarter. They eagerly learn; there is too much money involved to make criminals earnest students. At first phishing consisted only of a social engineering scam in which phishers spammed consumer e-mail accounts with letters ostensibly from banks. The more people got aware of the scam, the less spelling mistakes these messages contained, and the more fraudulent websites looked like legitimate ones.
Since about November 2004 there has been a lot of publications of a scheme which at first was seen as a new kind of phishing. This technique includes contaminating a PC with a Trojan horse program. The problem is that this Trojan contains a keylogger which lurks at the background until the user of the infected PC visits one of the specified websites. Then the keylogger comes to life to do what it was created for -- to steal information.
It seems that this technique is actually a separate scam aimed at stealing personal information and such attacks are on the rise. Security vendor Symantec warns about commercialisation of malware -- cybercriminals prefer cash to fun, so various kinds of information-stealing software are used more actively.
Spy Audit survey made by ISP Earthlink and Webroot Software also shows disturbing figures - 33.17% PCs contaminated with some program with information stealing capability.
However, more sophisticated identity theft attempts coexist with "old-fashioned" phishing scams. That is why users should not forget the advice which they all are likely to have learned by heart:
- Never follow a link in an email, if it claims to be from a financial institution
- Never open an attachment if the email is from somebody you don't know
- Protect your PC from malware
- Stay on the alert
|
| Author: Alexandra Gamanenko |
| |
Author Bio:
Linguist by profession, Alexandra Gamanenko currently takes part in a design studio project. It offers localization and translation of websites into Russian and Ukrainian, among lots of other useful services. Learn more -- visit the website www.clever-crayon.com |
|
 |
|
| |
Related Articles |
| |
Blogs - Freedom Of Thought And Expression
|
| |
What Cellular Phone Is Right For Me?
|
| |
Good Image Makes Good Advertising Sense
|
| |
Getting Better Results From Your Search Engine Traffic
|
| |
How To Reach Number One In The Search Engines For Your Keywords
|
| |
Search Engine Marketing Comes of Age
|
| |
Affordable Turnkey Solutions Give Important Web Presence
|
| |
Make Money With Adwords
|
| |
Why Add User Reviews to Your Website?
|
| |
How To Build An Opt-in List & Reduce Costs Using Ppc
|
| |
|
|
|
|
| |
|
Barebones computers and barebones systems provide a ray of hope for those looking for very affordabl ... - Peter Stewart |
| |
|
Professional website hosting is a complex arena and you need this checklist of criteria to look out ... - Christopher Buckley |
| |
|
Have you ever imagined a day without a cell phone? Terrible isn?t it? It seems like you are a hermit ... - Joseph Then |
| |
|
|
| |
|
Advice for UK online shoppers on how to protect themselves when buying on the internet with particul ... - John Lynch |
| |
|
Have you been snared in the "spending trap"? Learn to let your business fund itself with these three ... - Joseph Pattison |
| |
|
Do you keep in touch with your current and previous customers? Do you keep them updated by email? Ar ... - Justine Curtis |
| |
|
For those who are not familiar with sitemaps, a sitemap is quite simply a map or a guide that lists ... - Philip Nicosia |
| |
|
The big name emailers, such as Big Box Stores, baby product companies, grocery services and more use ... - Ray La Foy |
| |
|
| |
|
|
