메뉴 바로가기 본문 바로가기

Pharming
Keeper

OVERVIEW

Pharming
protection solution​

Pharming refers to a financial fraud method
which manipulates a PC infected with malicious code,
induces users to access a phishing site even when the users
access a financial company’s homepage, and withdraw deposits
with leaked information by stealing financial information.

  • Malicious code
    distribution

    Phishing scammer

  • Attempt to
    access the site

    User’s PC

  • Accessing a
    phishing site

    Impossible to access normal site
    due to address falsification

Types of online hacking

  • Keyboard

    • Port​
    • KBD polling

  • PC

    • USB/Dx hooking​
    • Virtual Driver​
    • Sys M hooking​
    • TrdM hooking​
    • memory hacking

  • Web

    • Phishing/Pharming​
    • Htm injection​
    • BHO attack​
    • memory hacking

  • Browser

    • COM hacking​
    • Sub Class hacking​
    • memory hacking

  • Server

    • IP/PORT

FEATURE

Existing solution
overview​​

  • Web/mail scan
    kyota(RSA)

  • Blacklist update
    site blocker (ISP) linkage

  • Vulnerability,behavior-based
    filter (Scom/RSA)
    ​malicious code deletion
    (vaccine)

  • Information DB-based DNS
    address forgery real-time
    monitoring

With our proprietary technology, it is possible
to respond with a minimum blank for variants,
and it can be provided as an ASP model.​​

  • Firewall

  • Vaccine

  • Pharming cop​

  • DLP

  • OTP

  • Authorized
    certificate​

DNS, web content-based preemptive processing​

  • Integrity

    • Pharming Safety Center
      (ASSC)

  • Security

    • Service content​
    • Content aware-based
      tampering detection

  • Diversity

    • Support of all versions of
      commercial web browsers

  • Stability

    • Kernel mode collision
      prevention​
    • Minimum resources user
      selection option policy

COMPOSITION

Composite map

FUNCTION

Function

Content-based IP address and falsification real-time detection

  • DNS change real-time detection

    IP information reception​
    Real-time detection of various forms of DNS falsification

  • Web content change detection

    Receiving objectification (Node) of target site content ​
    Real-time detection of various forms of tampering with web content

Warning message for fake access 

  • Transaction suspension

    It detects according to the currently connected bank address and site content,
    and processes warning and transaction suspension.

CERTIFICATE

Pharming Keeper

With our proprietary technology,
it is possible to respond with a minimum blank for variants,
and it can be provided as an ASP model.​

Partner