Vers & Virus

2005-10-01

Eddy Willems

NOXS and EICAR, Belgium
Editor: Helen Martin

Abstract

Eddy Willems reviews: Vers & Virus by François Paget.


Title: Vers & Virus

Author: François Paget

Publisher: Dunod 2005

ISBN: 210 008 3112

Language: French

L'auteur

During the same trip I met with my friend François Paget, a well respected anti-virus expert who has been working in the anti-virus industry for around 14 years.

François is one of the founders of McAfee's AVERT group (Anti Virus and Vulnerability Emergency Response Team). He is also a long-standing member of EICAR and has been a WildList reporter in France since the start of the WildList. François is the person the French media contact when they need information or a comment on a new virus outbreak or malware attack. During our meeting he revealed that he had just written a new book - in his native French - which would be released one week later. I decided to buy a copy.

Quelque chose pour chacun

The book contains over 300 pages of virus information and is divided into 10 chapters. I felt that it had something for everyone - this book will help even non-specialist readers understand the virus-related security issues they encounter in their day-to-day work and it contains valuable information for IT technicians and managers.

The opening chapter is dedicated to definitions of all virus-related matters. Although these definitions are broad, they are illustrated with many examples, and the combination of the definitions and the examples provides the reader with an excellent overall picture.

The second chapter was my favourite: the history of viruses, worms and other malware. This chapter also covers some of the history of the anti-virus industry. For example, there is a mention of the start of Virus Bulletin in July 1989 and even a reference to the original connection between EICAR and CARO - something not many people know about these days. The history section covers events as far as the end of 2004.

Chapter 3 gives an overview of viruses catalogued by infection method, type and functionality. The next four chapters provide a more detailed look at all the viruses described in Chapter 3. The information here is set out in a clear and not excessively technical manner, thus making the book accessible for all.

Near the end of the book is an overview of anti-virus programs. The descriptions and accompanying tables are quite comprehensive. François also gives the reader suggestions as to how to go about selecting the right protection for their company. For me, though, this part of the book seems too theoretical. Having a long career as an IT security consultant behind me, I felt that this could have been written from a more practical angle. However, a description of the impact of virus outbreaks and an estimate of the financial damage caused by some virus attacks boosts this chapter significantly.

The final chapter draws some conclusions and looks at the evolution of viruses. Again, the information is well presented and backed up with plenty of diagrams and charts. Indeed charts are well used throughout the book, and the book is very logically structured with clear figures and tables. François has also included a number of notes throughout the book, providing links to relevant Internet sites.

À mon avis

In my opinion François has done a very good job and I believe this book is a must-have for anybody who works with or is interested in 'viruses and worms' (the translation of the title). If you understand French, buy this book - you will not be disappointed. If you don't understand French, buy it as well - it could be the start of your new French language course!

As a Belgian I feel lucky to have been taught to speak and understand a number of different languages. I hope that eventually this book will be translated into English, as its style is refreshingly different from that of any other books on the subject and it will, inevitably, gain a wider audience in English.

I will certainly be adding Vers & Virus to my expanding library of security-related books. At this rate I will need to open some form of public library, as the supply of high quality anti-virus and security-related books seems to be never ending!

Found a useful infosecurity book? Why not tell us about it so we can let others know - email: editor@virusbtn.com.

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest articles:

The dark side of WebAssembly

The WebAssembly (Wasm) format rose to prominence recently when it was used for cryptocurrency mining in browsers. This opened a Pandora’s box of potential malicious uses of Wasm. In this paper Aishwarya Lonkar & Siddhesh Chandrayan walk through some…

Through the looking glass: webcam interception and protection in kernel mode

The computer’s webcam is one of the most relevant components when it comes to digital privacy. In this paper, Reason Software's Ronen Slavin dives into the video capturing internals of Windows and discusses the implementation of a driver that…

VB2017 paper: Browser attack points still abused by banking trojans

With the ever-increasing use of banking-related services on the web, browsers have naturally drawn the attention of malware authors. They are interested in adjusting the behaviour of the browsers for their purposes, namely intercepting the content of…

Does malware based on Spectre exist?

It is likely that, by now, everyone in computer science has at least heard of the Spectre attack. Since many excellent explanations of the attack already exist, this article focuses on the probability of finding Spectre being exploited on Android…

EternalBlue: a prominent threat actor of 2017–2018

At the centre of last year's infamous WannaCry ransomware attack was an NSA exploit leaked by the Shadow Brokers hacker group, known as ‘EternalBlue’. The worm-like functionality of the exploit made a deadly impact by propagating to interconnected…


Bulletin Archive

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.