Counter threat fraudulent identity theft.Fortinet have confirmed its FortiGateT systems, security appliances that provide integrated security applications, help defeat the growing threat of a new form of malicious electronic crime--'Pharming.' Fortinet is complementing its integrated security applications with a new educational paper that offers enterprises, service providers and individual users a five-step method for identifying the difficult-to-detect phenomenon Pharming pharming (fär`mĭng), the use of genetically altered livestock, such as cows, goats, pigs, and chickens, to produce medically useful products. is a highly sophisticated extension of the online confidence seam 'Phishing' and is best confined through a 'blended network security response' that eliminates threats including DNS poisoning See DNS cache poisoning and DNS hijacking. , Trojan horse See Trojan. Trojan Horse hollow horse concealed soldiers, enabling them to enter and capture Troy. [Gk. Myth.: Iliad] See : Deceit (application, security) Trojan horse programs and key-logging spy ware. During 2004, Gartner publicly reported that related crimes such as Phishing, whereby criminals use misleading e-mail and Websites to dupe individuals into sharing personal data like passwords, accounted for a staggering $2.4 billion in fraud, or an average of $1,200 per victim, during the last 12 months. Unlike Phishing, Pharming attacks hide silently in a network-connected computer and 'harvest' personal financial details of the users' regular Web surfing Refers to jumping from page to page on the Web. Just as in "TV channel surfing," where one clicks the remote to go from channel to channel, the hyperlink on Web pages makes it easy to jump from one page to another. activities. Users requesting a bona fide [Latin, In good faith.] Honest; genuine; actual; authentic; acting without the intention of defrauding. A bona fide purchaser is one who purchases property for a valuable consideration that is inducement for entering into a contract and without suspicion of being Website are unknowingly sent to a fake Website that mirrors a legitimate site. Once the pharming scheme is planted, malicious activity can be launched against a wide number of sites that the user may visit on a regular basis totally unknown to that user. Pharming attacks are carried out using sophisticated blended attacks against DNS servers, typically involving DNS cache poisoning Injecting false information into the caches of the DNS system so that future requests are diverted to another site. In July 1997, Eugene Kashpureff inserted fraudulent information into the DNS, causing users going to the Network Solutions Web site to be rerouted to his Alternic site. . Fortinet's FortiGate integrated security appliances can be used to secure DNS servers with stateful firewall In computing, a stateful firewall (any firewall that performs stateful packet inspection (SPI) or stateful inspection) is a firewall that keeps track of the state of network connections (such as TCP streams, UDP communication) travelling across it. rules and provide antivirus and intrusion prevention (IPS) to stop attacks. In some Pharming attacks, spyware or Trojan applications installed on end hosts have also been used to perform keystroke logging and Website redirection without the user being aware. In these instances, users deploying Fortinet's FortiGate systems on their network and/or FortiClient Host Security software on their desktop can receive immediate antivirus and IPS signatures from the 24/7 www.fortinet.com |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion