A new scam that’s being increasingly seen is called pharming. Unlike phishing that requires the victimized user to click on a link or attachment, this scam simply redirects victims to fraudulent websites without assistance. 

Pharming subverts a basic service of the Internet known as the Domain Name Service (DNS). Each machine connected to the Internet knows the location of one or more DNS servers. This service translates a human-friendly URL name (such as www.alecu.org) into an IP address, which is a unique number that has been assigned to each web server on the Internet.

Pharmers must first gain access to the DNS server and replace the IP number for the financial institution’s URL with the IP number of his or her fraudulent website. When this occurs, any person using that DNS server will be secretly redirected to the fraudulent website.

Pharming requires either an unpatched software/server vulnerability to exist on the DNS server itself, or the criminal needs an insider at the ISP or financial institution to make unauthorized DNS server changes. The good news is, this rarely occurs.

Rest assured, ALEC regularly manages and updates its DNS server’s software to maintain the extremely high level of security to help ensure that our members are protected. In addition, our website utilizes Pharming ShieldT, a proprietary suite of protection services designed to detect the widest variety of pharming and identity theft activity. Pharming Shield provides full protection against DNS hijacking, website defacement and SSL theft. 

 

Back to Identity & Security Protection