Phishing and Pharming: Dangerous Scams
As soon as almost all computer users already got used to -- or at least heard about -- the word "phishing", another somewhat confusing word appeared not long ago. Pharming. Does it differ from phishing -- and if yes, how?
Two Pharmings
Actually, two completely different fields use the term "pharming" now. We can say there exist two separate "pharmings".
If genetics or businessmen from pharmaceutical industry are talking about pharming (spelled like that) it might have nothing to do with computers. This word has long been familiar to genetic engineers. For them, it's a merger of "farming" and "pharmaceutical" and means the genetic engineering technique -- inserting extraneous genes into host animals or plants in order to make them produce some pharmaceutical product. Although it is a very interesting matter, this article is not about it.
As for PC users, the term "phishing" recently emerged to denote exploitation of a vulnerability in the DNS server software caused by malicious code. This code allows the cybercriminal who contaminated this PC with it to redirect traffic from one IP-address to the one he specified. In other words, a user who types in a URL goes to another web site, not the one he wanted to--and isn't supposed to notice the difference.
Usually such a website is disguised to look like a legitimate one -- of a bank or a credit card company. Sites of this kind are used solely to steal users' confidential information such as passwords, PIN numbers, SSNs and account numbers.
Dangerous Scams
A fake website that's what "traditional" phishing has in common with pharming. This scam can fool even an experienced computer user, and it makes pharming a grave threat. The danger here is that users don't click an email link to get to a counterfeit website.
Most people enter their personal information, unaware of possible fraud. Why should they suspect anything if they type the URL themselves, not following any links in a suspiciously-looking email? Unfortunately, "ordinary" phishers are also getting smarter. They eagerly learn; there is too much money involved to make criminals earnest students. At first phishing consisted only of a social engineering scam in which phishers spammed consumer e-mail accounts with letters ostensibly from banks. The more people got aware of the scam, the less spelling mistakes these messages contained, and the more fraudulent websites looked like legitimate ones.
Since about November 2004 there has been a lot of publications of a scheme which at first was seen as a new kind of phishing. This technique includes contaminating a PC with a Trojan horse program. The problem is that this Trojan contains a keylogger which lurks at the background until the user of the infected PC visits one of the specified websites. Then the keylogger comes to life to do what it was created for -- to steal information.
It seems that this technique is actually a separate scam aimed at stealing personal information and such attacks are on the rise. Security vendor Symantec warns about commercialisation of malware -- cybercriminals prefer cash to fun, so various kinds of information-stealing software are used more actively.
Spy Audit survey made by ISP Earthlink and Webroot Software also shows disturbing figures - 33.17% PCs contaminated with some program with information stealing capability.
However, more sophisticated identity theft attempts coexist with "old-fashioned" phishing scams. That is why users should not forget the advice which they all are likely to have learned by heart:
- Never follow a link in an email, if it claims to be from a financial institution
- Never open an attachment if the email is from somebody you don't know
- Protect your PC from malware
- Stay on the alert
Alexandra Gamanenko currently works at Raytown Corporation, LLC -- an independent software developing company that provides various solutions for information security.
The company's R&D department created an innovative technology, which disables information-stealing programs. Learn more -- visit the company's website http://www.anti-keyloggers.com
|
|
|
|
|
|
|
|
The Truth About Hiding Your Tracks on the Internet
Ok, ok, I know you've seen them. All those pop... Read More
Viruses, Trojans, and Spyware - Oh My!
Have you ever had to call Symantec or McAfee to... Read More
The Never Ending Spyware Story
It's been with us since 1993, it's gotten more intrusive,... Read More
Why Corporations Need to Worry About Phishing
Phishing is a relatively new form of online fraud that... Read More
Information Security for E-businessmen: Just a Couple of Ideas
If you constantly deal with bank or electronic accounts, it... Read More
Parental Control - Dangers To Your Child Online & Internet Child Safety Tips
Did you know...? 1 in 5 children who use computer... Read More
Its War I Tell You!
There are ways to insure security though. You can get... Read More
Why Malicious Programs Spread So Quickly?
It seems that nowadays cybercriminals prefer cash to fun. That... Read More
Check Out That Privacy Policy
Before you enter your name, address or any other data... Read More
Online Shopping: 10 Tips For Safe Online Shopping
Have you ever bought a product or service from the... Read More
How to Know Whether an Email is a Fake or Not
A few nights ago I received an email from "2CO"... Read More
Free Ways to Tackle Threats to Your Computer
Protect Your PCHaving problems with your pc? Do your kids,... Read More
Blogs as Safe Haven for Cybercriminals?
To blog or not to blog? Well, why not? Lots... Read More
Road Warrior At Risk: The Dangers Of Ad-Hoc Wireless Networking
Airport Menace: The Wireless Peeping Tom As a network... Read More
Spyware Programs Are Out To Get You!
The average computer is packed with hidden software that can... Read More
A Personal Experience with Identity Theft
Some months ago, before there was much publicity regarding phishing... Read More
Web and Computer Security
Well, if that would have been said to me by... Read More
Sarbanes-Oxley: A Cross-Industry Email Compliance Challenge
Is your enterprise following the rules?The bulk of financial information... Read More
Securing Your Accounts With Well-Crafted Passwords
In the past I've never really paid much attention to... Read More
Do You Know What your Kids Are Doing Online?
It's a sad statistic, but hundreds of unsuspecting kids are... Read More
Adware and Spyware: The Problems and Their Solutions
The Threat10 years ago you could probably have run no... Read More
7 Ways to Spot a PayPal Scam E-Mail
Paypal is a great site and is used by many... Read More
New Mass Mailing Spamming Internet Trojan for the Windows Platform
May. 16th 2005 - MicroWorld has reported the discovery of... Read More
A Painless Plagiarism Solution
A crowded marketplace can lead to unethical webmasters using underhand... Read More
Backup and Save your business!
There you are busily typing away on your PC or... Read More
Hacking Threats and Protective Security
The 1998 Data Protection Act was not an extension to,... Read More
Computer-Virus Writers: A Few Bats In The Belfry?
"Male. Obsessed with computers. Lacking a girlfriend. Aged 14 to... Read More
6 Ways To Prevent Identity Theft
These six ways to prevent identity theft offer you valuable... Read More
Protect Your Little Black Book
The movie Little Black Book features a young woman, Stacy,... Read More
How Can Someone Get Private Information From My Computer?
From the "Ask Booster" column in the June 17, 2005... Read More
Burning Bridges is Bad, But Firewalls are Good
When you signed up for that ultra-fast DSL or Cable... Read More
Phishing, Fraudulent, and Malicious Websites
Whether we like it or not, we are all living... Read More
Reclaim Your PC from the Internet Spies
Viruses are, however, not the only malicious software programs out... Read More
SCAMS ? Be Aware ? And Report When Necessary
The Internet is a vast International Network of people and... Read More
Dont Fall Victim to Internet Fraud-10 Tips for Safer Surfing
The Internet offers a global marketplace for consumers and businesses.... Read More
Dialing Up a Scam: Avoiding the Auto-Dialer Virus
For many, the daily walk to the mailbox evokes mixed... Read More
A Painless Plagiarism Solution
A crowded marketplace can lead to unethical webmasters using underhand... Read More
Just Whos Computer is this Anyway?
Well, this is an article I never thought I would... Read More
Spyware Removal
Spyware SolutionProbably Today's Biggest Computer Problem. You Suffer Without Knowing... Read More
How to Protect Yourself Against Online Criminals
Credit card fraud is a growing problem for online businesses... Read More
What Every Internet Marketer Should Know About Spyware
If you run any type of Internet business, Adware and... Read More
Identity Theft -- 10 Simple Ways to Protect Your Good Name!
Identity Theft is one of the most serious problems facing... Read More
The Saga of the Annoying Adware
When we think of adware, what comes to mind are... Read More
HackAttack
P C. owners are constantly at risk from attacks by... Read More
Dont be a Dork ? Protect Yourself
There are folks out there who use their powers for... Read More
Online Shopping: 10 Tips For Safe Online Shopping
Have you ever bought a product or service from the... Read More
Spy Scanners ? Don?t Compromise your Privacy
Spies, spyware, internet parasites are among what they are usually... Read More
New CipherSend Online Security Service Thwarts Email Address Theft And Soothes Password Fatigue
In 1997, I decided after 15 years as a practicing... Read More
Backup and Save your business!
There you are busily typing away on your PC or... Read More
What is Hacking? Are You a Hacker?
WHAT IS HACKING?Hacking, sometimes known as "computer crime" has only... Read More
Internet Small Business and Fraud
Be careful of sites that promise to send you "instant... Read More
Mall Protection
The Loss Prevention Manager should be receptive to the needs... Read More
Check Out That Privacy Policy
Before you enter your name, address or any other data... Read More
Protecting Your Children On The Internet
If you are a parent, as am I, I think... Read More
Blogs as Safe Haven for Cybercriminals?
To blog or not to blog? Well, why not? Lots... Read More
Data Security; Are Your Company Assets Really Secure?
Is your data secure? Think again. Securing data is unlike... Read More
Top 10 tips for Safe Internet Shopping
Over £5 billion pounds was spent on online shopping in... Read More
Make Money Online - Latest Scam Disclosed
Before we start, I want to make it clear that... Read More
Behavior to Stay Safer Online
1. Importance of a Virus Scanner: A Antivirus program can... Read More
The Attack of the Advertiser - Spy Mother Spy
The menacing campaigns that drive the corporate spyware and adware... Read More
3 Steps to Ending Scams and Virus Problems
Watching how the traditional media covers the latest virus or... Read More
Top Five Online Scams
The top five online scams on the Internet hit nearly... Read More
Spyware Protection Software
Spyware protection software is the easiest way of removing spyware... Read More
Free Antivirus Security Software: Download Now to Eliminate Spyware, Pop Up Ads, etc.
Adware. Spyware. Pesky pop up ads. Internet congestion. Computer malfunctions... Read More
How To Be Your Own Secret Service Agency
So you want to know who your kids are chatting... Read More
What to Look for before You Purchase Spyware Software
Huge number of spyware software applications are available in the... Read More
Internet Security |