πŸ“š Knowledge Library β€” Topic 5.5B β€” Internet & Security

Phishing & Pharming Explained Simply

Learn how criminals trick users into giving away personal data, and understand the clear difference between phishing and pharming.

1. Invitation

Some attacks work by tricking people.

Not every cyber attack begins with advanced technology. Sometimes the easiest target is the person using the computer.

Phishing and pharming both try to send users to fake websites so that personal data can be stolen.

πŸ’‘ Key idea: both attacks often lead to a fake website, but they get the user there in different ways.
Figure 1.1
The Trap
User
↓
Tricked or redirected
↓
Fake website
2. Big Idea

Phishing uses a fake message. Pharming uses redirection.

In a phishing attack, the user is tricked into clicking a link, often in an email or message.

In a pharming attack, malicious software can redirect the user to a fake website, even when the correct address is typed.

πŸ’‘ Phishing = user clicks a fake link. Pharming = user is redirected to a fake site.
Figure 2.1
Two Routes to a Fake Site
Phishing
fake link
↓
Fake site

Pharming
redirect
↓
Fake site
3. FutureLogic Bridge

Think of a fake parking ticket and a fake street sign.

Phishing is like finding a fake parking ticket on your car. It looks real, so you scan the QR code and enter your payment details on a fake site.

Pharming is like someone secretly changing a street sign. You follow what looks like the correct route, but you are sent to the wrong place.

πŸ’‘ Bridge: phishing makes you follow the fake link; pharming secretly sends you the wrong way.
Figure 3.1
Real-World Model
Fake parking ticket
=
Phishing

Fake street sign
=
Pharming
4. Phishing

Phishing tricks the user into clicking.

A phishing attack often begins with a legitimate-looking email. The message encourages the user to click a link.

The link takes the user to a fake website. If the user enters personal data, such as a password or bank details, that data can be stolen.

StepWhat happens?
1Fake email or message is sent
2User clicks a link
3User enters data on a fake website
4Personal data is stolen
Figure 4.1
Phishing Process
Fake email
↓
Click link
↓
Fake website
↓
Data stolen
5. Pharming

Pharming redirects the user without an obvious fake link.

Pharming is more hidden. Malicious code can change DNS settings so that a real web address sends the user to a fake website.

The user may type the correct address, but the computer is redirected to the wrong place.

StepWhat happens?
1Malicious software is downloaded
2DNS settings are changed
3User types the correct address
4User is redirected to a fake website
Figure 5.1
Pharming Process
Correct URL typed
↓
DNS redirect
↓
Fake website
↓
Data stolen
6. Worked Example

Compare phishing and pharming clearly.

Exam questions often ask students to describe or compare these attacks. The safest approach is to explain how the user reaches the fake website.

Question

Describe the difference between phishing and pharming.

Model answer: "Phishing tricks the user into clicking a link in a fake email or message. Pharming redirects the user to a fake website, even when the correct web address is typed."
Figure 6.1
Exam Comparison
Phishing
click fake link

vs

Pharming
redirected automatically
7. Recognising Phishing

Students need simple checks they can remember.

Phishing emails often contain clues. The email address may look wrong, the tone may feel urgent, or the link may not match the real website.

Users should be careful before clicking links or entering personal data.

🎯 Exam Tip: good checks include the sender email address, the spelling or tone of the message, and the URL behind the link.
Figure 7.1
Three Checks
Sender address
+
Spelling / tone
+
URL link
8. Common Mistake

Do not describe both as just β€œfake websites”.

Both attacks may involve fake websites, but that alone does not explain the difference.

⚠️ Common Mistake:

Student answer: "Phishing and pharming are both fake websites."

❌ Too vague. It does not explain how the user gets to the fake website.

Better answer: "Phishing tricks the user into clicking a fake link. Pharming redirects the user to a fake website, even when the correct web address is typed."
Figure 8.1
Better Wording
Weak answer
fake websites

↓

Better answer
click link vs redirect
9. Summary

Phishing and pharming in one screen.

Phishing uses a fake message or email to trick the user into clicking a link and entering personal data.

Pharming redirects the user to a fake website, often after malicious software changes DNS settings.

Both attacks aim to steal personal or confidential data.

πŸ’‘ Final thought: phishing is about clicking the trap; pharming is about being redirected to the trap.
Figure 9.1
Final Comparison
Phishing
fake link

vs

Pharming
fake redirect