Understanding the difference between phishing and pharming

Both phishing and pharming involve the theft of personal identity data and financial account credentials, but there are subtle differences between them, and you should know what they are.

How do phishing attacks differ from pharming attacks? Are pharming attacks still prevalent?

Phishing and pharming are generically both the same, in that the purpose of the exploit is to steal personal identity data and financial account credentials for monetary gain. According the Anti-Phishing Working Group, phishing attacks use both "social engineering and technical subterfuge" to get the goods. This means that spoofed emails trying to convince the email readers to enter their personal banking info, and spyware, such as Trojan keyloggers, are the mainstays of the phishing world.

While pharming is still considered a subset of phishing, it refers to a specific type of phishing using DNS hijacking or poisoning to redirect the user's browser to fraudulent sites or servers. Pharming was on the increase in 2005 but has decreased slightly this year due to increased diligence of domain controls, and is therefore employed less than the phishing exploits mentioned above. Protection from pharming, however, should still be offered in a comprehensive security approach.

This was last published in November 2006

Dig Deeper on Cybersecurity risk assessment and management

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Russell Dean Vines

Security for mobile broadband

While some SMBs are not securing their mobile broadband, there is good reason to do so, even if a customer has only a small amount of data to protect. Continue Reading

Understanding smurf attacks

A smurf attack can slow down a network to the point of shutting it down completely. Learn how to understand a full-scale smurf attack and how to ... Continue Reading

What are the network security risks of streaming video?

Streaming video and audio sites are frequently visited on both home computers and work computers. Learn about streaming video security risks and what... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our IT Channel experts

View all IT Channel questions and answers

MicroscopeUK

Channel delivers solid growth for Lenovo

Firm aiming to build on the momentum of its last fiscal year with the channel playing a key role in delivering the growth

Lenovo joining the DaaS party

Vendor on the brink of rolling out an offering that channel partners can take out the SME customers

Myths around SD-WAN holding back wider adoption

Cogeco Peer 1 finds that customers are putting off deployment because of some concerns that could be addressed by the channel

SearchSecurity

Why user identity management is a security essential

Who's on your network and accessing your data? IT security teams must be able to answer these questions. A strong identity ...

What identity governance tools can do for your organization

Learn how to evaluate available security tools that manage the governance of your users' identity and access to company systems ...

Words to go: Email phishing security

IT teams must take precautionary measures to address cybersecurity awareness, particularly when it comes to email. Refer to this ...

SearchStorage

3PAR customers face adjustment with new HPE Primera array

Hewlett Packard Enterprise storage customers say they like many of the Primera storage array's new capabilities, but will miss ...

Discover the benefits of a network-attached storage device

Find out what's new with NAS technology today, including how it differs from SAN and DAS and where a NAS device might fit into ...

5 NVMe-oF implementation questions answered

Want to know more about implementing NVMe over fabrics, where it's useful and what to consider? Get answers to these and other ...

SearchNetworking

ARM upgrades network visibility tool cARMa and adds Guru

ARM Data Center Software upgraded its SaaS network inventory tool cARMa to include more network visibility capabilities, ...

How products from leading campus LAN switch vendors compare

Before evaluating campus LAN switches, assess the organization's core needs as well as future requirements, such as capabilities ...

Mist Wi-Fi no longer just cloud

The Mist Wi-Fi is no longer cloud only. The company's new Mist Edge appliance splits some management components between the cloud...

SearchCloudComputing

Oracle layoffs hit Dyn team's sales, marketing staffs

Oracle Dyn cuts sales and marketing jobs as Oracle plans to end some Dyn services in 2020. The layoffs come amid other Oracle ...

Evaluate the Azure serverless tools to ease deployment anxiety

So you want to build a serverless application on Microsoft Azure? Explore the tools and features that support those apps and ...

Debunk 10 common public cloud myths

A range of public cloud misconceptions -- including those related to security and cost -- give enterprise adopters the wrong idea...

SearchDataManagement

Building leaner, meaner BI data sources

As business intelligence analysis and reporting platforms become increasingly important in the enterprise, so does the data that ...

A comparison of open source, real-time data streaming platforms

With so many real-time data streaming tools, how do you know which is right for your organization? Experts compare Spark ...

Data virtualization tools promote anywhere, anytime data access

This online handbook examines data virtualization software and how organizations are deploying and using the technology as part ...

SearchBusinessAnalytics

Power BI update firms up Microsoft analytics market

With its latest update to Power BI, Microsoft showed its commitment to its business intelligence platform and maintained its ...

MicroStrategy product development advances after Voice.com sale

Analytics and BI vendor MicroStrategy sells the Voice.com domain name and moves forward with product R&D in a competitive market ...

Social media analytics applications live and die by the data

This handbook provides insight and advice on how to use analytics to get information on customer sentiment and marketing ...

Dig Deeper on Cybersecurity risk assessment and management

Related Q&A from Russell Dean Vines

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.