Standardlikelihood: Highseverity: Very HighDraft
CAPEC-89Pharming
Abstraction
Standard
Status
Draft
Likelihood
High
Severity
Very High
Description
A pharming attack occurs when the victim is fooled into entering sensitive data into supposedly trusted locations, such as an online bank site or a trading platform. An attacker can impersonate these supposedly trusted sites and have the victim be directed to their site rather than the originally intended one. Pharming does not require script injection or clicking on malicious links for the attack to succeed.
Related weaknesses· 2
Related attack patterns· 1
Exploits2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Reliance on Reverse DNS Resolution for a Security-Critical Actioncwe-350 | 100% | live |
| Weakness | Origin Validation Errorcwe-346 | 100% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.