Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Phishing & Pharming


Published on

Phishing & Pharming - stealing personal information over the Internet

Published in: Technology, Design
  • Be the first to comment

Phishing & Pharming

  1. 1. Devendra Yadav 31/05/2007
  2. 2. Introduction 1 Phishing Techniques 2 Pharming Techniques 3 Phishing Statistical Highlights 4 Phishing/Pharming Demo 5
  3. 3. <ul><li>In Computing both Phishing and Pharming are criminal activity </li></ul><ul><li>Both Phishing and Pharming are methods used to steal personal information over the Internet </li></ul><ul><ul><ul><ul><li>User Id/Password </li></ul></ul></ul></ul><ul><ul><ul><ul><li>Credit Card Number </li></ul></ul></ul></ul><ul><ul><ul><ul><li>PIN </li></ul></ul></ul></ul><ul><li>Phishing is typically carried out using email or an instant message, and often directs users to give details at a website </li></ul><ul><li>Pharming is a hacker's attack aiming to redirect a website's traffic to another (bogus) website. </li></ul>
  4. 4. <ul><li>Pharming is more dangerous than Phishing </li></ul><ul><li>In Phishing incorrect client request is sent and if user is little bit intelligent he/she can identify it very easily </li></ul><ul><li>In Pharming correct Client request is sent and that get redirected to wrong server. So identifying it is difficult for intelligent users also </li></ul>
  5. 5. Technique -1 Link manipulation In this technique hackers manipulate links in such manner that it’s difficult for user to identify whether is page is served form correct website or fake website. Few of such techniques are 1. Misspelled URLs e.g. 2. Sub domains e.g. 3. Using “@” e.g. Technique -2 Website forgery In this technique hackers alter the address bar 1. Hiding Address bar 2. Altering the content of Address bar using scripts 3. putting image with legitimate URL over address bar 1 2 4 3 Hacker Creates Fake website Send link of website to user using mail/instant messaging User opens link provided by Hacker User start sending/receiving information from Fake website Hacker 1 Fake website 2 4 3 User
  6. 6. <ul><li>In Pharming attackers try to redirect the user’s requests (web traffic) to a bogus website, for doing this commonly used techniques are: </li></ul><ul><ul><li>Altering Host File </li></ul></ul><ul><ul><ul><li>Host File location </li></ul></ul></ul><ul><ul><ul><li>%windir%/system32/drivers/etc/hosts (Windows) </li></ul></ul></ul><ul><ul><ul><li>/etc/hosts (Unix) </li></ul></ul></ul><ul><ul><ul><li>Sample Host file </li></ul></ul></ul><ul><ul><li>Hijacking DNS Server/Local Network Router </li></ul></ul>
  7. 7. Web Server IP : 1 2 3 4 2 IP add. is not specified in Host file IP add. is specified in Host file DNS & Host File
  8. 8. <ul><li>Number of unique phishing reports received in April: 23656 </li></ul><ul><li>Number of unique phishing sites received in April: 55643 </li></ul><ul><li>Number of brands hijacked by phishing campaigns in April: 172 </li></ul><ul><li>Country hosting the most phishing websites in April: United States </li></ul><ul><li>No hostname just IP address: 6 % </li></ul><ul><li>Percentage of sites not using port 80: 1.5 % </li></ul><ul><li>Average time online for site: 3.8 days </li></ul><ul><li>Longest time online for site: 27 days </li></ul>Source: APWG(
  9. 9. Source: APWG(
  10. 10. <ul><li>United State 28.44% </li></ul><ul><li>France 26.9% </li></ul><ul><li>Republic of Korea 21.05%, </li></ul><ul><li>Romania 2.04% </li></ul><ul><li>China 1.9% </li></ul><ul><li>Germany 1.9% </li></ul><ul><li>Russia 1.75% </li></ul><ul><li>United Kingdom 1.46% </li></ul><ul><li>Turkey 1.46%, </li></ul><ul><li>Netherlands 1.17%. </li></ul>Source: APWG(
  11. 11. <ul><li>Live Phishing URLs </li></ul><ul><ul><ul><li> </li></ul></ul></ul><ul><ul><ul><li> </li></ul></ul></ul><ul><ul><ul><li> </li></ul></ul></ul><ul><ul><ul><li> </li></ul></ul></ul><ul><ul><ul><li> </li></ul></ul></ul><ul><ul><ul><li> </li></ul></ul></ul>
  12. 12. Thank You !