Vers & Virus


Eddy Willems

NOXS and EICAR, Belgium
Editor: Helen Martin


Eddy Willems reviews: Vers & Virus by François Paget.

Title: Vers & Virus

Author: François Paget

Publisher: Dunod 2005

ISBN: 210 008 3112

Language: French


During the same trip I met with my friend François Paget, a well respected anti-virus expert who has been working in the anti-virus industry for around 14 years.

François is one of the founders of McAfee's AVERT group (Anti Virus and Vulnerability Emergency Response Team). He is also a long-standing member of EICAR and has been a WildList reporter in France since the start of the WildList. François is the person the French media contact when they need information or a comment on a new virus outbreak or malware attack. During our meeting he revealed that he had just written a new book - in his native French - which would be released one week later. I decided to buy a copy.

Quelque chose pour chacun

The book contains over 300 pages of virus information and is divided into 10 chapters. I felt that it had something for everyone - this book will help even non-specialist readers understand the virus-related security issues they encounter in their day-to-day work and it contains valuable information for IT technicians and managers.

The opening chapter is dedicated to definitions of all virus-related matters. Although these definitions are broad, they are illustrated with many examples, and the combination of the definitions and the examples provides the reader with an excellent overall picture.

The second chapter was my favourite: the history of viruses, worms and other malware. This chapter also covers some of the history of the anti-virus industry. For example, there is a mention of the start of Virus Bulletin in July 1989 and even a reference to the original connection between EICAR and CARO - something not many people know about these days. The history section covers events as far as the end of 2004.

Chapter 3 gives an overview of viruses catalogued by infection method, type and functionality. The next four chapters provide a more detailed look at all the viruses described in Chapter 3. The information here is set out in a clear and not excessively technical manner, thus making the book accessible for all.

Near the end of the book is an overview of anti-virus programs. The descriptions and accompanying tables are quite comprehensive. François also gives the reader suggestions as to how to go about selecting the right protection for their company. For me, though, this part of the book seems too theoretical. Having a long career as an IT security consultant behind me, I felt that this could have been written from a more practical angle. However, a description of the impact of virus outbreaks and an estimate of the financial damage caused by some virus attacks boosts this chapter significantly.

The final chapter draws some conclusions and looks at the evolution of viruses. Again, the information is well presented and backed up with plenty of diagrams and charts. Indeed charts are well used throughout the book, and the book is very logically structured with clear figures and tables. François has also included a number of notes throughout the book, providing links to relevant Internet sites.

À mon avis

In my opinion François has done a very good job and I believe this book is a must-have for anybody who works with or is interested in 'viruses and worms' (the translation of the title). If you understand French, buy this book - you will not be disappointed. If you don't understand French, buy it as well - it could be the start of your new French language course!

As a Belgian I feel lucky to have been taught to speak and understand a number of different languages. I hope that eventually this book will be translated into English, as its style is refreshingly different from that of any other books on the subject and it will, inevitably, gain a wider audience in English.

I will certainly be adding Vers & Virus to my expanding library of security-related books. At this rate I will need to open some form of public library, as the supply of high quality anti-virus and security-related books seems to be never ending!

Found a useful infosecurity book? Why not tell us about it so we can let others know - email:



Latest articles:

VB99 paper: Giving the EICAR test file some teeth

There are situations that warrant the use of live viruses. There are also situations where the use of live viruses is unwarranted. Specifically, live viruses should not be used when safer and equally effective methods can be used to obtain the…

Powering the distribution of Tesla stealer with PowerShell and VBA macros

Since their return more than four years ago, Office macros have been one of the most common ways to spread malware. In this paper, Aditya K Sood and Rohit Bansal analyse a campaign in which VBA macros are used to execute PowerShell code, which in…

VB2017 paper: Android reverse engineering tools: not the usual suspects

In the Android security field, all reverse engineers will probably have used some of the most well-known analysis tools such as apktool, smali, baksmali, dex2jar, etc. These tools are indeed must‑haves for Android application analysis. However, there…

VB2017 paper: Exploring the virtual worlds of advergaming

As adverts in gaming (‘advergaming’) ecosystems continue to become more sophisticated, so the potential complications grow for parents, children and gamers, who just want to play without having to worry about where their data is going (and how it is…

Distinguishing between malicious app collusion and benign app collaboration: a machine-learning approach

Two or more mobile apps, viewed independently, may not appear to be malicious - but in combination, they could become harmful by exchanging information with one another and by performing malicious activities together. In this paper we look at how…

Bulletin Archive