Exam 312-50v12 topic 1 question 67 discussion

A. Pharming --------------------- A. Pharming: DNS or computer manipulation to redirect to fraudulent websites. B. Skimming: Illegally capturing sensitive information, such as credit card details. C. Pretexting: Deceiving individuals by creating fictional scenarios to extract information. D. Wardriving: Searching for Wi-Fi networks for potential exploitation.

A - The attacker redirects web traffic to a fraudulent website by installing a malicious program on a personal computer or server (from ceh v12 book - page 1353)

A. Pharming

A. Pharming CEH Book V12 Module 09 P1357 "Pharming is a social engineering technique in which the attacker executes malicious programs on a victim’s computer or server, and when the victim enters any URL or domain name, it automatically redirects the victim’s traffic to an attacker-controlled website. This attack is also known as “Phishing without a Lure.” The attacker steals confidential information like credentials, banking details, and other information related to web-based services. Pharming attack can be performed in two ways: DNS Cache Poisoning and Host File Modification"

A. Pharming Explanation: Pharming is a type of cyber attack where an attacker redirects the traffic of a legitimate website to a fake website, which is designed to look identical to the original website. The attackers achieve this by exploiting vulnerabilities in the DNS server software or by modifying the local hosts file on the victim's computer. The aim of this attack is to gather sensitive information, such as login credentials, credit card details, or other personal information, from the victim. In the given scenario, Steve performed DNS cache poisoning to redirect the web traffic of the target organization's website to a malicious website. By doing this, he can trick the users into entering their sensitive information into the fake website, which can be later used for identity theft.