Vers & Virus

2005-10-01

Eddy Willems

NOXS and EICAR, Belgium
Editor: Helen Martin

Abstract

Eddy Willems reviews: Vers & Virus by François Paget.


Title: Vers & Virus

Author: François Paget

Publisher: Dunod 2005

ISBN: 210 008 3112

Language: French

L'auteur

During the same trip I met with my friend François Paget, a well respected anti-virus expert who has been working in the anti-virus industry for around 14 years.

François is one of the founders of McAfee's AVERT group (Anti Virus and Vulnerability Emergency Response Team). He is also a long-standing member of EICAR and has been a WildList reporter in France since the start of the WildList. François is the person the French media contact when they need information or a comment on a new virus outbreak or malware attack. During our meeting he revealed that he had just written a new book - in his native French - which would be released one week later. I decided to buy a copy.

Quelque chose pour chacun

The book contains over 300 pages of virus information and is divided into 10 chapters. I felt that it had something for everyone - this book will help even non-specialist readers understand the virus-related security issues they encounter in their day-to-day work and it contains valuable information for IT technicians and managers.

The opening chapter is dedicated to definitions of all virus-related matters. Although these definitions are broad, they are illustrated with many examples, and the combination of the definitions and the examples provides the reader with an excellent overall picture.

The second chapter was my favourite: the history of viruses, worms and other malware. This chapter also covers some of the history of the anti-virus industry. For example, there is a mention of the start of Virus Bulletin in July 1989 and even a reference to the original connection between EICAR and CARO - something not many people know about these days. The history section covers events as far as the end of 2004.

Chapter 3 gives an overview of viruses catalogued by infection method, type and functionality. The next four chapters provide a more detailed look at all the viruses described in Chapter 3. The information here is set out in a clear and not excessively technical manner, thus making the book accessible for all.

Near the end of the book is an overview of anti-virus programs. The descriptions and accompanying tables are quite comprehensive. François also gives the reader suggestions as to how to go about selecting the right protection for their company. For me, though, this part of the book seems too theoretical. Having a long career as an IT security consultant behind me, I felt that this could have been written from a more practical angle. However, a description of the impact of virus outbreaks and an estimate of the financial damage caused by some virus attacks boosts this chapter significantly.

The final chapter draws some conclusions and looks at the evolution of viruses. Again, the information is well presented and backed up with plenty of diagrams and charts. Indeed charts are well used throughout the book, and the book is very logically structured with clear figures and tables. François has also included a number of notes throughout the book, providing links to relevant Internet sites.

À mon avis

In my opinion François has done a very good job and I believe this book is a must-have for anybody who works with or is interested in 'viruses and worms' (the translation of the title). If you understand French, buy this book - you will not be disappointed. If you don't understand French, buy it as well - it could be the start of your new French language course!

As a Belgian I feel lucky to have been taught to speak and understand a number of different languages. I hope that eventually this book will be translated into English, as its style is refreshingly different from that of any other books on the subject and it will, inevitably, gain a wider audience in English.

I will certainly be adding Vers & Virus to my expanding library of security-related books. At this rate I will need to open some form of public library, as the supply of high quality anti-virus and security-related books seems to be never ending!

Found a useful infosecurity book? Why not tell us about it so we can let others know - email: editor@virusbtn.com.

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest articles:

VB2018 paper: Tracking Mirai variants

Mirai, the infamous DDoS botnet family known for its great destructive power, was made open source soon after being found by MalwareMustDie in August 2016, which led to a proliferation of Mirai variant botnets. This paper presents a set of Mirai…

VB2018 paper: Hide’n’Seek: an adaptive peer-to-peer IoT botnet

This paper presents a thorough analysis of the inner workings of Hide’n’Seek, a peer-to-peer IoT botnet discovered in January 2018. With an exploit table that can be updated in memory and modular in its approach, Hide’n’Seek gives us a glimpse of…

Botception: botnet distributes script with bot capabilities

Researchers Jan Sirmer and Adolf Streda describe the branch of the Necurs botnet that they have been monitoring, the changes it has undergone in the course of a year, and present an analysis of the next stage of the attack: Flawed Ammy.

VB2018 paper: Since the hacking of Sony Pictures

Minseok (Jacky) Cha describes various attacks in Korea which occurred after the Sony Pictures hacking incident and which are suspected to be the work of the same group, the Lazarus Group.

VB2018 paper: Uncovering the wholesale industry of social media fraud: from botnets to bulk reseller panels

In this paper GoSecure researchers Masarah Paquet-Clouston and Olivier Bilodeau explore an undocumented segment of the social media fraud (SMF) industry: wholesaling, from botnet supply operations to bulk reselling.


Bulletin Archive

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.