Typing the correct website address can still cost you money because of sophisticated cyber attacks

What is Pharming and Why is it Dangerous?

Pharming is a form of fraud in which attackers attempt to redirect users to a fake website, even though they have entered the correct web address. These fake sites are often designed very sophisticatedly, identical to the original site from logo, color to interface, making it extremely difficult for victims to distinguish with the naked eye. Their main goal is to steal sensitive personal data such as usernames, passwords, credit card numbers or banking information of users.

According to security firm Norton, the core danger of pharming is that even if a user carefully types in the correct address, the malicious system can still take them to a fake site without them even knowing it. This makes pharming much harder to detect than more familiar forms of fraud such as phishing (which relies on fake emails or text messages).

How pharming works

Pharming can operate at two different levels, both of which have the potential to bypass user vigilance:

Personal device level : At this level, the user's device (computer, phone) can be infected with malware by downloading unsafe files or clicking on virus-containing links. At that time, the malware will silently change the network settings in the device, causing the system to automatically redirect to a fake copy every time you access a familiar address.

Large-scale DNS server attacks : More dangerously, attackers can directly attack the DNS server (Domain Name Resolution System) - which is responsible for translating domain names to real IP addresses. When the DNS server is interfered with, a series of users can be redirected to fake websites at the same time without knowing it.

Security company Kaspersky emphasizes that it is the attack from the DNS root that makes pharming especially dangerous, because just a small change to this system can affect thousands of people at the same time. This is also the reason why many experts call pharming a “silent attack”, because it does not leave clear traces like viruses or phishing emails, but the consequences are very unpredictable.

Cybersecurity company Norton also pointed out that one of the reasons why users are easily victims of pharming is the habit of being subjective and ignoring security warnings. Imperva also noted that, although the "unsafe website" warning is the most important signal for users to recognize the risk of pharming, in reality, many people have the habit of ignoring them.

What can I do to minimize the risk of pharming?

Taking proactive precautions can significantly reduce the risk:

Update your software regularly : Always keep your operating system, browser, and applications up to date. This is the fastest way to patch security holes that can be exploited for pharming.

Use a trusted DNS service : This helps reduce the risk of attacks from the DNS root.

Turn on two-factor authentication (MFA) : Enable two-factor authentication for all your important accounts, from banking to social media. This adds an extra layer of security, making it harder for bad guys to gain access even if they get your password.

Check and re-enter if there are any unusual signs : If you see the displayed link has strange characters, the page layout is a bit unusual, or the system keeps reporting an incorrect password and asking to re-enter, re-type the website address from the beginning or use the official application instead of relying on the browser alone.

Don't ignore security warnings : Most importantly, never ignore "not secure website" warnings from your browser. These warnings are there for your protection.

By applying additional layers of security and staying vigilant, especially paying attention to system alerts, you can significantly reduce your risk of falling victim to a pharming attack.