What is Pharming Attack?
There are several ways of to do this pharming attack. One of the simplest and less sophisticated ways is to modify the hosts files. This file allows storing IP – domain names to speed up surfing and avoid consulting a DNS server. For example, if the hosts file contains: xxxx.xxx.xxx Company.com Every time that the user enters Company.com into the browser, the PC won’t consult a DNS but rather it will consult the hosts file first and, if it finds this domain name, it will take the IP address XXX.XXX.XXX.XXX which is a counterfeit website where the attacker steals the credentials by phishing attack.