Marka aynu hareeraha eegno waxa aynu la yaabnaa sida xawliga ah ee dunidu isu bedelayso. Farsamooyinka khiyaanada internetka^(Online) sida Pharming iyo weerarrada kale ee dembiyada internetka ayaa maraya heerkii ugu sarreeyay abid. Si aan caqabadahaas uga gudubno, waxaan u baahannahay inaan ugu yaraan yeelanno xoogaa faham aasaasi ah oo ku aaddan ereyadan. Ujeedada dukumeentigan macluumaadku waa in dhibaatada loo wajaho xal.

Waa maxay Pharming

been abuurka internetka

Pharming waxa ay u jihaysaa dadka isticmaala intarneedka^(Internet) mareegaha sharciga ah una jiheeya kuwa xaasidnimo leh iyada oo la adeegsanayo istaraatiijiyad la yiraahdo DNS Cache Poisoning – halkaas oo xogta musuqmaasuqa ah lagu geliyo kaydka kaydka DNS .

Weeraryahanku wuxuu adeegsadaa dhowr siyaabood oo uu ku fuliyo weerarrada farmashiyaha, mid ka mid ah dariiqooyinka ugu caansan waa in wax laga beddelo faylka martida loo yahay. ^(Host)Farmashiyaha^(Pharmer) ayaa si qarsoodi ah u afduuba kombiyuutarkaaga oo ku geynaya shabakad been abuur ah. Barowsarkaaga ayaa laga yaabaa inuu muujiyo URL- ka saxda ah , laakiin kuma jiri doontid serverka sharciga ah. Tani, inta badan, waa bog la mid ah kan bangigaaga, machad maaliyadeed ama mareegaha wax iibsiga ee internetka sida, eBay, ama Amazon . Halkan, weeraryahanku wuxuu raadiyaa macluumaadkaaga sirta ah sida lambarada kaararka deynta, furaha akoontada, iwm.

Faylka Hosts-ku^{(Hosts file )} wuxuu ogolaanayaa kaydinta IP & magacyada domain si loo dedejiyo surfing loogana fogaado la talinta server-ka DNS . Marka, mar kasta oo isticmaaluhu galo ciwaanka browserka, PC-gu wuxuu gelayaa faylka Hosts marka hore, haddii uu helo magacan domain, wuxuu qaadanayaa ciwaanka IP-ga ee degelka. Hadda haddii faylka Hosts -ka wax laga beddelo, adeegsadaha waxaa loo wareejin doonaa degel khaldan, halkaas oo weeraryahanku sugi doono inuu xado aqoonsiga.

Si loo qaado weerarka farmashiyaha, weeraryahanku caadi ahaan wuxuu adeegsadaa kuwa soo socda:^{(To carry out a pharming attack, the attacker typically makes use of the following:)}

Qoraal Dufcaddii^{(Batch Script)} si aad ugu qorto IP-ga xaasidka ah iyo magacyada domain-ka galka Hosts-ka.
Ku biire^(Joiner) si uu ugu biiro faylka^(file) dufcadda gal kale
A Code Obfuscator si uu u caawiyo in la fulin karo ogaanshaha fayraska ka baxsan software.

phishing vs Pharming

Waxaad u baahan tahay inaad si cad u qeexdo farqiga u dhexeeya Farmashiyaha iyo phishingka^(Phishing) . Weerarada khiyaaliga ahi waxay ka^{(Phishing attacks)} bilowdaan helista iimaylka oo ku weydiinaya inaad booqato mareegaha laga yaabo inaad wax u dhimato. Weerarada farmasiyadu waxay ka bilowdaan heerka server-ka DNS halkaas oo lagugu jiheeyo mareegaha xaasidnimada leh.

Sida loo yareeyo weerarka Pharming

Isticmaal^(Use) barnaamijka ka hortagga fayraska kaas oo kaa ilaalinaya beddelka aan la oggolayn ee faylka Host waa hal dariiqo. ^(Host)Sidoo kale, waa inaad si joogto ah u dhejisaa nidaamkaaga hawlgalka iyo software-ka rakiban.

Weerarada farmashiyaha oo aad u casrisan ayaa lagu bartilmaameedsadaa server-ka DNS kaas oo inta badan ay gacanta ku hayaan Bixiyeyaasha Adeegga Internetka^{(Internet Service Providers)} ( ISPs ). Xaaladdan oo kale, adeegsaduhu wuxuu leeyahay fursado yar oo gacanta ah si uu u xakameeyo khatarta oo wax yar ayuu ka qaban karaa, marka laga reebo isticmaalka server-yada DNS ee la aamini karo .

Inta badan daalacashada iyo software amniga maanta ayaa awood u leh in ay ka digtoonaadaan isticmaalayaasha marka ay ka soo dagayaan goobaha Pharming iyo phishing . Sidan oo kale, adeegsaduhu waa inuu had iyo jeer foojignaado isagoo bixinaya faahfaahinta ku saabsan xisaabaadka maaliyadeed. Mar kasta oo shaki kaa galo, la xidhiidh adiga oo isticmaalaya shabakad sugan oo ha muujin aqoonsigaaga ama macluumaadka kale ee aad codsatay.

Taxaddar la qaadi karo si looga hortago Farmashiyaha

Isticmaal Bixiye Adeeg Internet oo la aamini karo, oo sharci ah:^{(Use a trusted, legitimate Internet Service Provider:)} Nabadgelyada adag ee heerka ISP waa difaacaaga koowaad ee ka hortagga farmashiyaha. Bixiyeyaasha adeegga internetka ( ^(Internet)ISPs ) ayaa si adag uga shaqeynaya dhammaadkooda si ay u shaandheeyaan goobaha 'farmasiga'.
Software ka-hortagga fayraska ka wanaagsan: ^{(Better Antivirus software: )}Ku rakib^(Install) barnaamijka ka hortagga fayraska Windows PC-gaaga kaas oo kuu qabanaya shaqada kugu habboon. Waa dhaqan wanaagsan inaad ka iibsato nidaamka ka hortagga fayraska bixiyaha software ammaan ee la aaminsan yahay si loo yareeyo soo-gaadhistaada khiyaanada farmashiyaha.
Cusbooneysii kombuyutarka: ^{(Keep computer updated:)} La ^(Get)caadayso^(Web) inaad soo dejiso cusbooneysiintii ugu dambeysay ee amniga (ama balastarrada) biraawsarkaaga iyo nidaamka hawlgalka si loo ilaaliyo. Adeegso biraawsar ammaan oo wanaagsan had iyo jeer.
Laba jeer hubi higgaadda degelka:^{(Double-check the spelling of a website: )} Inta badan, waxa la arkay in qofka wax weeraray uu qarinayo URL-ka dhabta ah isaga oo dul saaraya ciwaan u eg oo sharci ah ama isticmaalaya URL la higgaadsan yahay oo la mid ^(URL)ah^(URL) . Marka, had iyo jeer hubi barta ciwaanka ee biraawsarkaaga si aad u hubiso in higgaadu sax tahay .^(Web)
Hubi URL:^{(Check URL: )} Hubi URL goob kasta oo ku waydiisa inaad bixiso macluumaadka shakhsiyeed. Hubi^(Make) in fadhigaagu ka bilaabmayo ciwaanka saxda ah ee la yaqaan ee goobta, iyada oo aan xaraf dheeraad ah lagu lifaaqin. Laakiin waxaa muhiim ah in la xasuusto in browserkaagu uu muujin karo URL- ka saxda ah , laakiin kuma jiri doontid serverka sharciga ah.
Hubi shahaadada:^{(Check the certificate: )} Waxay qaadanaysaa dhawr daqiiqo haddii aanay ahayn ilbiriqsi si loo xaqiijiyo in bogga mareegaha aad ka furtay browserka uu sharci yahay iyo in kale. Si aad u hubiso, aad 'File' ee ku jira liiska ugu weyn oo dooro ' Properties '. Haddii kale, waxaad si toos ah u gujin kartaa jiirkaaga meel kasta oo shaashadda browser ah, dooro ikhtiyaarka ' Properties '. Laga soo bilaabo menu-ka soo baxa, dhagsii " Shahaadaha^{(Certificates)} " oo hubi haddii goobta ay sido shahaado sugan oo ka timid milkiilaheeda sharciga ah.
^{(Check the ‘HTTP)}Hubi ciwaanka ' ^{( address: )}HTTP ' : Waa habka ugu badbaadsan uguna fudud ee la raaco. Markaad booqato bog lagaa codsado inaad geliso macluumaadka shakhsiyeed, 'HTTP' waa inuu u beddelaa https. "s" waxay u taagan tahay ammaan. Boostada ayaa ku tusi doonta farqiga u dhexeeya HTTP iyo HTTPS^{(difference between HTTP and HTTPS)} .
Raadi PadLock:^{(Look for PadLock: )} Quful quful, ama fure, ayaa tilmaamaya xidhidh sugan, sir ah, iyo quful furan, ama furaha jabay, ayaa muujinaya xidhiidh aan la hubin. Marka, had iyo jeer raadi qufulka ama furaha xagga hoose ee biraawsarkaaga ama bar-hawleedka kombiyuutarkaaga.

Farmashashadu waa walaac daran waana kor u kaca. In kasta oo ISP^(ISPs) -yadu ay qaadanayaan dadaalka lagama maarmaanka ah si ay u bixiyaan shaandhaynta, isticmaale ahaan waa in aan aad u feejigannaa oo aan taxadarnaa marka la isticmaalayo internetka^(Internet) . Akhri^(Read) soo socda wax ku saabsan khiyaanada Whaling^{(Whaling scams)} iyo Clickjacking khiyaanada hadda!

What is Pharming and how can you prevent this Online Fraud?

When we look around we are amazed at the speed with whіch the world is changing. Onlinе fraud technіques such as Pharming and other cybercrime attacks are at an all-time high. To overcome such challenges, we need to at least have some basic understanding of these terms. The intention of this informational document is to approach the problem with a solution.

What is Pharming

pharming online fraud

Pharming redirects Internet users from legitimate websites to malicious ones using a strategy called DNS Cache Poisoning – where corrupt data is inserted into the cache database of a DNS.

The attacker uses several ways to carry out pharming attacks, one of the most popular way is to modify the Host file. The Pharmer covertly hijacks your computer and takes you to a forged website. Your browser may display the legitimate URL, but you will not be on the legitimate server. This, in most cases, is a page that looks identical to that of your bank, financial institution or online shopping websites like, eBay, or Amazon. Here, the attacker seeks your confidential information like credit card numbers, account passwords, etc.

The Hosts file allows storing IP & domain names to speed up surfing and avoid consulting a DNS server. So, every time a user enters the address into the browser, the PC accesses the Hosts file first and, if it finds this domain name, it takes up the IP address of a website. Now if the Hosts file is modified, the user will be redirected to the wrong website, where the attacker will be waiting to steals the credentials.

To carry out a pharming attack, the attacker typically makes use of the following:

A Batch Script to write the malicious IP and domain names onto the Hosts files.
A Joiner to join the batch file onto another file
A Code Obfuscator to help the executable escape detection from anti-virus software.

Phishing vs Pharming

You need to be clear about the difference between Pharming and Phishing. Phishing attacks start with the receipt of an e-mail asking you to visit a website where you may get compromised. Pharming attacks start at the DNS server level where you are redirected to a malicious website.

How to mitigate Pharming attack

Use an anti-virus program that protects you from unauthorized alterations of the Host file is one way. Also, you should regularly patch your operating system and the installed software.

More sophisticated pharming attacks target the DNS server which is usually handled by Internet Service Providers (ISPs). In such a scenario, a user has few options at hand to handle the risk and he can do little against it, except using trustworthy DNS servers.

Most browsers & security software today are capable of alerting users when landing at Pharming and Phishing sites. As such, a user should always remain vigilant while divulging details about financial accounts. Whenever in doubt, communicate using a secure network and do not reveal your credentials or any other requested information.

Precautions that can be taken to prevent Pharming

Use a trusted, legitimate Internet Service Provider: Rigorous security at the ISP level is your first line of defense against pharming. Internet service providers (ISPs) are working hard on their end to filter out ‘pharmed’ sites.
Better Antivirus software: Install an antivirus program on your Windows PC that does the right job for you. It is a good practice to buy an anti-virus system from a trusted security software provider to reduce your exposure to pharming scams.
Keep computer updated: Get into the habit of downloading the latest security updates (or patches) for your Web browser and operating system to stay protected. Use a good secure web browser always.
Double-check the spelling of a website: In most cases, it is observed that the attacker obscures the actual URL by overlaying a legitimate-looking address or by using a similarly spelled URL. So, always check the Web browser’s address bar to make sure the spelling is correct.
Check URL: Check the URL of any site that asks you to provide personal information. Make sure your session begins at the known authentic address of the site, with no additional characters appended to it. But it is important to remember that your browser may display the legitimate URL, but you will not be on the legitimate server.
Check the certificate: It takes a few minutes if not seconds to verify if a website page you’ve opened in the browser is legitimate or not. To check, go to ‘File’ in the main menu and select ‘Properties’. Alternatively, you can right-click your mouse anywhere on the browser screen and, select ‘Properties’ option. From the menu that pops up, click on “Certificates” and check if the site carries a secure certificate from its legitimate owner.
Check the ‘HTTP‘ address: It is the safest and easiest practice to follow. When you visit a page where you’re asked to enter personal information, the ‘HTTP’ should change to https. The “s” stands for secure. This post will show you the difference between HTTP and HTTPS.
Look for PadLock: A locked padlock, or a key, indicates a secure, encrypted connection, and an unlocked padlock, or a broken key, indicates an unsecured connection. So, always look for a padlock or key on the bottom of your browser or your computer taskbar.

Pharming is a serious concern and it’s on the rise. Although ISPs are taking the necessary efforts to provide filtering, we as a user should be more vigilant and exercise caution when using the Internet. Read next about Whaling scams and Clickjacking frauds now!

Damien Houston

About the author

Waxaan ahay injineer software iyo khabiir Windows 10 ah. Waxaan leeyahay waayo-aragnimo ka badan laba sano oo ku saabsan la shaqaynta casriga ah, windows 10, iyo Microsoft Edge. Diiradayda ugu weyn waa ka dhigista aaladahaagu kuwo si ka wanaagsan oo degdeg ah u shaqeeya. Waxaan ka shaqeeyay mashaariic kala duwan shirkado ay ka mid yihiin Verizon, Imac, HP, Comcast, iyo kuwo kale oo badan. Sidoo kale waxaan ahay macalin shahaado ka haysta tababarka daruuraha Microsoft Azure.

Waa maxay Pharming sideese uga hortagi kartaa Khayaanada Intarneedka ah?

Waa maxay Pharming

phishing vs Pharming

Sida loo yareeyo weerarka Pharming

Taxaddar la qaadi karo si looga hortago Farmashiyaha

What is Pharming and how can you prevent this Online Fraud?

What is Pharming

Phishing vs Pharming

How to mitigate Pharming attack

Precautions that can be taken to prevent Pharming

Damien Houston

About the author

Related posts

Khayaanada Microsoft: Khiyaanada Taleefanka & iimaylka ee si khaldan u isticmaala Magaca Microsoft

Shaqaalaysiinta Been-abuurka ah ee Online-ka ah iyo Khiyaanada Shaqooyinka ayaa sii kordhaya

Sida loo hubiyo in xiriirku uu badbaado yahay ama aan la isticmaalin biraawsarkaaga

Soo ogow in akoonkaaga onlaynka ah la jabsaday & iimaylka & faahfaahinta sirta ah oo la daatay

Talooyin Badbaadada onlaynka ah ee Carruurta, Ardayda iyo Dhallinyarada

Waa maxay Farta Taraafiga ee Mareegta? Sidee loo ilaaliyaa naftaada?

Qaababka qaan-sheegga ugu Fiican ee Word Online si loo abuuro qaan-sheeg ganacsi oo bilaash ah

Waa maxay Fleeceware? Sidee iskaga ilaalin kartaa abka Fleeceware?

Adeegyada Kobcinta Khadka Tooska ah ee Ku-saleysan ee Bilaashka ah ee ugu Fiican

Soosaaraha Magaca beenta ah ee bilaashka ah si loo dhaliyo Aqoonsi Been abuur ah

Weerarada Cyber - Qeexid, Noocyada, Ka Hortagga

Khatarta iyo Cawaaqib xumada ka dhalan karta wadaagga badan ee Baraha Bulshada

Ka fogow Intarneetka Kalluumeysiga Khayaanada Injineernimada Bulshada

Iska ilaali Khiyaamada wax iibsiga ee Intarneedka & Fasaxa Xiliga Fasaxa

Waan garanayaa eraygaaga sirta ah Sextortion waxay la soo noqotay awood dheeraad ah

Waa maxay SIM-ku-beddelashada khiyaanada iyo sidee baad ku ilaalinaysaa badbaadada

PayPal Login: Talooyin si aad si ammaan ah isugu diiwaan geliso oo aad si ammaan ah u gasho

Sida loo aqoonsado fariimaha WhatsApp-ka khiyaanada ah

Xatooyada Aqoonsiga onlaynka ah: Talooyin ka hortag iyo ilaalin

Dib u eegista browserka VPN ee bilaashka ah ee Globus: Siri dhammaan taraafikada, baadh si qarsoodi ah

Waa maxay Pharming sideese uga hortagi kartaa Khayaanada Intarneedka ah?

Waa maxay Pharming

phishing vs Pharming

Sida loo yareeyo weerarka Pharming

Taxaddar la qaadi karo si looga hortago Farmashiyaha

What is Pharming and how can you prevent this Online Fraud?

What is Pharming

Phishing vs Pharming

How to mitigate Pharming attack

Precautions that can be taken to prevent Pharming

Damien Houston

About the author

Related posts

Khayaanada Microsoft: Khiyaanada Taleefanka & iimaylka ee si khaldan u isticmaala Magaca Microsoft

Shaqaalaysiinta Been-abuurka ah ee Online-ka ah iyo Khiyaanada Shaqooyinka ayaa sii kordhaya

Sida loo hubiyo in xiriirku uu badbaado yahay ama aan la isticmaalin biraawsarkaaga

Soo ogow in akoonkaaga onlaynka ah la jabsaday & iimaylka & faahfaahinta sirta ah oo la daatay

Talooyin Badbaadada onlaynka ah ee Carruurta, Ardayda iyo Dhallinyarada

Waa maxay Farta Taraafiga ee Mareegta? Sidee loo ilaaliyaa naftaada?

Qaababka qaan-sheegga ugu Fiican ee Word Online si loo abuuro qaan-sheeg ganacsi oo bilaash ah

Waa maxay Fleeceware? Sidee iskaga ilaalin kartaa abka Fleeceware?

Adeegyada Kobcinta Khadka Tooska ah ee Ku-saleysan ee Bilaashka ah ee ugu Fiican

Soosaaraha Magaca beenta ah ee bilaashka ah si loo dhaliyo Aqoonsi Been abuur ah

Weerarada Cyber ​​- Qeexid, Noocyada, Ka Hortagga

Khatarta iyo Cawaaqib xumada ka dhalan karta wadaagga badan ee Baraha Bulshada

Ka fogow Intarneetka Kalluumeysiga Khayaanada Injineernimada Bulshada

Iska ilaali Khiyaamada wax iibsiga ee Intarneedka & Fasaxa Xiliga Fasaxa

Waan garanayaa eraygaaga sirta ah Sextortion waxay la soo noqotay awood dheeraad ah

Waa maxay SIM-ku-beddelashada khiyaanada iyo sidee baad ku ilaalinaysaa badbaadada

PayPal Login: Talooyin si aad si ammaan ah isugu diiwaan geliso oo aad si ammaan ah u gasho

Sida loo aqoonsado fariimaha WhatsApp-ka khiyaanada ah

Xatooyada Aqoonsiga onlaynka ah: Talooyin ka hortag iyo ilaalin

Dib u eegista browserka VPN ee bilaashka ah ee Globus: Siri dhammaan taraafikada, baadh si qarsoodi ah

Weerarada Cyber - Qeexid, Noocyada, Ka Hortagga