Pharming facts for kids

Pharming is a type of cyberattack. It tries to send you to a fake website instead of the real one you wanted to visit. This can happen if a harmful program gets on your computer. It might also happen if a weak spot in a special internet system is found. This system helps your computer find websites.

The word "pharming" comes from "farming" and "phishing". Phishing is when someone tries to trick you into giving them your user names or passwords. Both pharming and phishing are used to steal personal information online. This is a big worry for websites where you shop or do online banking. Special tools are needed to stop pharming attacks. Regular antivirus software might not protect you from pharming.

How Does Pharming Work?

Pharming attacks often target weak spots in your computer or network. These weak spots are usually closer to you, the user.

Tricking Your Computer

One way pharming works is by changing a special file on your computer. This file is called the hosts file. It helps your computer find websites. If this file is changed by a harmful program, it can send you to a fake website. This happens even if you type the correct website address. Personal computers like desktops and laptops are often targets. This is because they might not have as much protection as big company servers.

Tricking Your Router

Another way pharming works is by attacking your network router. Your router is the device that connects all your home devices to the internet. Routers tell your devices which internet servers to use. If a router is tricked, it can send wrong information to all devices connected to it. This makes it hard to know if something is wrong.

Attackers can trick a router in two main ways. They can change its settings to use a bad internet server. Or, they can replace the router's internal software, called firmware. This new firmware can look normal but secretly send your internet traffic to fake sites. This kind of attack is very hard to spot.

Many home wireless routers are easy targets. This is because their default passwords are often not changed. Attackers can guess these passwords easily. Once they get in, they can change the router's settings or firmware. These attacks are tricky because they happen before your internet traffic even reaches the main internet.

Real-Life Examples of Pharming

Pharming attacks have happened to many different groups. Here are a few examples:

• In January 2005, a large internet company called Panix had its website address changed. It was redirected to a site in Australia. The problem was fixed quickly.
• In February 2007, a pharming attack hit over 50 banks and financial companies. Attackers made fake websites for each company. People who visited a certain website unknowingly downloaded a harmful program. This program, like a Trojan horse, then collected their login details.
• In January 2008, a security company reported another attack. This one targeted a Mexican bank. People's home router settings were changed after they opened a fake email. The email looked like it was from a greeting card company.

How to Protect Yourself from Pharming

Protecting yourself from pharming involves several steps. Both website owners and regular users can help.

Secure Connections and Passwords

One important way to stay safe is to use secure website connections. Look for "HTTPS" at the start of the website address. You will also see a small padlock symbol. This means your connection is encrypted and safer. Always check for this on sites where you enter personal information, like online banking sites. Also, make sure the website's security certificate is valid.

For your home wireless router, changing the default password is very important. Many routers come with easy-to-guess passwords. Change yours to a strong, unique password. This makes it much harder for attackers to get into your router.

See also

• Phishing
• DNS spoofing
• IT risk
• Mutual authentication
• Trusteer