Home > Internet Scams > Pharming Scam

Pharming Scam

By: Chris Nickson - Updated: 7 Oct 2012 | comments*Discuss
 
Scam Pharming Phishing Host File Dns

You’ll have come across the phishing scam where links in a spoof e-mail direct you to a fake website where you’re asked for details and can find yourself a victim of identity theft. It’s a product of the cyber age.

But it’s been eclipsed by a variant, a variation on the theme, known as pharming. This is even more insidious, because without a great deal of care you can find yourself a victim, and you might never even realise what happened.

How It Works

You can be very careful and type the proper URL into your web browser, thinking you’re taking every precaution to get to the real web site, and indeed you are. But pharming is dangerous. Instead, you’re redirected to a site that looks real, but is counterfeit, and you don’t even know it.

Although it’s only recently received publicity, it’s actually nothing new, and has been familiar for quite a long time to experts as DNS cache poisoning. However, the new name has appeared as it’s become more widespread, and for its similarity to phishing.

There are a couple of ways pharming can be carried out. It can be done by either changing the host files on the computer of the victim – you – by infecting it with a virus, or, far worse, finding and exploiting vulnerabilities in DNS server software, which directs people to the proper website – in other words, they hijack the address and substitute the fake site. A well-executed attack like that can affect literally thousands of people.

Meanwhile you carry on as you would with the real site, not aware that you’re giving away sensitive information.

How To Avoid It

There’s no simple or easy solution to avoid pharming. You need to keep your wits about you when you’re going online. But there are precautions you can take to help keep yourself safe.

Whenever you’re going onto a site where you’ll be giving personal information, make sure it’s safe – that is, it begins with https:// rather than just http:// – and definitely secure. That’s probably the most important thing, and applies whenever you’re undertaking a transaction or giving out information. You can also check whether the site has a certificate. Click File > Properties, or right click in the body of the page and select Properties from the menu.

Make sure you have a good firewall, anti-spyware and anti-virus software on your computer, and make sure you scan regularly. These greatly reduce the chance of someone hacking into your machine and changing host files.

Download and install the security updates for your browser. You can also click on the link that says Get Updates For Windows Automatically.

If you bank or pay your bills online, check all your accounts on a very regular basis. If you notice any irregularity, report it to the institution immediately. You should also check your credit file frequently.

If you come across a site that you believe has been pharmed, then don’t proceed. You should contact the institution and inform them of the situation.

You might also like...
Share Your Story, Join the Discussion or Seek Advice..
Why not be the first to leave a comment for discussion, ask for advice or share your story...

If you'd like to ask a question one of our experts (workload permitting) or a helpful reader hopefully can help you... We also love comments and interesting stories

Title:
(never shown)
Firstname:
(never shown)
Surname:
(never shown)
Email:
(never shown)
Nickname:
(shown)
Comment:
Validate:
Enter word:
Latest Comments
  • Fari
    Re: How Can I Delete My Profile From Dating Site?
    I would like you to email me and tell me how to delete my profile coz I cannot afford it
    20 November 2020
  • Fari
    Re: How Can I Delete My Profile From Dating Site?
    I would like to delete my vegan dating profile asap
    20 November 2020
  • Susan Smith
    Re: Sky TV Scam
    Just received a call from Newport UK 01633489553. Allegedly Sky, telling me that I have problems with my Internet and it was to be deactivated in 4 days…
    18 November 2020
  • Lynn
    Re: Vishing Scam
    I received an email from Royal Mail regarding a missed letter from HM customs there was a link to reschedule and I clicked on it and it was a form but…
    13 November 2020
  • Rouge1
    Re: Sky TV Scam
    Just a had call from someone for thay for sky calling my my broadband but sky aways asked you got Security question first
    31 October 2020
  • Titch
    Re: Sky TV Scam
    Just had a call from 03450522989 recmy sky maintainance. Saying I was paying far to much a year. We agreed a password. She asked my last 4 fidgets from…
    27 October 2020
  • Sean Trinidad
    Re: Visa Credit Card Scam
    Hey im her for a crediit card i am a bissnise mann and i do a lot of things
    7 October 2020
  • Alimck
    Re: Sky TV Scam
    Just had a call from a very unsure SE Asian sounding woman who sounded as though she was in an exceptionally busy call centre- very difficult to make…
    1 October 2020
  • Andy
    Re: Sky TV Scam
    01822 751059 01875 979762 01848 695282 All in the past week. All claiming to be from Sky tech support. I just hang up. But it's getting really…
    22 September 2020
  • nikasavictim
    Re: Builder's Scams
    Be aware of the company called Nikasa Build & Design. We made a big mistake in trusting them and giving them thousands of pounds in advance for a…
    25 August 2020