Pharming is a cyberattack technique in which malicious code is used to redirect a website’s traffic to a fraudulent or malicious website without the user's knowledge. This redirection typically occurs through:
DNS poisoning or host file modification
Exploitation of vulnerabilities in DNS servers or user machines
Pharming aims to collect sensitive data (like usernames, passwords, credit card details) by making users believe they are interacting with a legitimate website when, in fact, they are on a fake one.
As per CEH v13 Official Courseware:
Pharming is a server-side or client-side attack that manipulates how URLs are resolved.
It differs from phishing in that it does not rely on fake emails or social engineering but rather on redirecting web traffic via compromised DNS infrastructure or local configuration.
Incorrect Options:
A. Spimming is the use of spam over instant messaging.
C. Phishing involves tricking users through fake emails or messages.
D. Spear-phishing is a targeted version of phishing directed at specific individuals or roles.
Reference – CEH v13 Official Courseware:
Module 09: Social Engineering
Section: “Phishing and Pharming Attacks”
Subsection: “Differences Between Phishing and Pharming”
