Anti-phishing group expands to address pharming

Anti-phishing group expands to address pharming

Summary: Kim Cameron, an identity expert popular for his "Laws of Identity," reported in his blog that the Anti-Phishing Working Group (APWG) has added pharming to its web site. After praising the Group for not changing its name yet (so what if they do?

SHARE:
TOPICS: Security
1

Kim Cameron, an identity expert popular for his "Laws of Identity," reported in his blog that the Anti-Phishing Working Group (APWG) has added pharming to its web site. After praising the Group for not changing its name yet (so what if they do?) he points to a report the Group published on phishing trends for December 2004. Cameron gives it "five stars" for going "way beyond counting incidents and into analyzing trends." The free report looks at hijacked brands by industry sector, breaks down phishing sites hosted by country, and examines a sample malware attack.

Like phishing, pharming uses spoofed sites to trick recipients into divulging personal financial data such as credit card numbers. But rather than using 'spoofed' e-mails as a lure, pharming uses malware/spyware to redirect users from real websites to fraudulent sites, typically via DNS hijacking.

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

1 comment
Log in or register to join the discussion
  • Sad state of DNS security

    We've all heard the story of the Cub Scout web site domain that was hijacked and pointed to a porn site just for kicks, maybe even grinned a little at the humor of it all. It was only a matter of time until real crooks saw the potential of DNS hijacking too. Time to audit the security policies of our registrars and ISP's.

    Mark Brasche
    SurfSafely.com
    surfsafely