Vers & Virus

2005-10-01

Eddy Willems

NOXS and EICAR, Belgium
Editor: Helen Martin

Abstract

Eddy Willems reviews: Vers & Virus by François Paget.


Title: Vers & Virus

Author: François Paget

Publisher: Dunod 2005

ISBN: 210 008 3112

Language: French

L'auteur

During the same trip I met with my friend François Paget, a well respected anti-virus expert who has been working in the anti-virus industry for around 14 years.

François is one of the founders of McAfee's AVERT group (Anti Virus and Vulnerability Emergency Response Team). He is also a long-standing member of EICAR and has been a WildList reporter in France since the start of the WildList. François is the person the French media contact when they need information or a comment on a new virus outbreak or malware attack. During our meeting he revealed that he had just written a new book - in his native French - which would be released one week later. I decided to buy a copy.

Quelque chose pour chacun

The book contains over 300 pages of virus information and is divided into 10 chapters. I felt that it had something for everyone - this book will help even non-specialist readers understand the virus-related security issues they encounter in their day-to-day work and it contains valuable information for IT technicians and managers.

The opening chapter is dedicated to definitions of all virus-related matters. Although these definitions are broad, they are illustrated with many examples, and the combination of the definitions and the examples provides the reader with an excellent overall picture.

The second chapter was my favourite: the history of viruses, worms and other malware. This chapter also covers some of the history of the anti-virus industry. For example, there is a mention of the start of Virus Bulletin in July 1989 and even a reference to the original connection between EICAR and CARO - something not many people know about these days. The history section covers events as far as the end of 2004.

Chapter 3 gives an overview of viruses catalogued by infection method, type and functionality. The next four chapters provide a more detailed look at all the viruses described in Chapter 3. The information here is set out in a clear and not excessively technical manner, thus making the book accessible for all.

Near the end of the book is an overview of anti-virus programs. The descriptions and accompanying tables are quite comprehensive. François also gives the reader suggestions as to how to go about selecting the right protection for their company. For me, though, this part of the book seems too theoretical. Having a long career as an IT security consultant behind me, I felt that this could have been written from a more practical angle. However, a description of the impact of virus outbreaks and an estimate of the financial damage caused by some virus attacks boosts this chapter significantly.

The final chapter draws some conclusions and looks at the evolution of viruses. Again, the information is well presented and backed up with plenty of diagrams and charts. Indeed charts are well used throughout the book, and the book is very logically structured with clear figures and tables. François has also included a number of notes throughout the book, providing links to relevant Internet sites.

À mon avis

In my opinion François has done a very good job and I believe this book is a must-have for anybody who works with or is interested in 'viruses and worms' (the translation of the title). If you understand French, buy this book - you will not be disappointed. If you don't understand French, buy it as well - it could be the start of your new French language course!

As a Belgian I feel lucky to have been taught to speak and understand a number of different languages. I hope that eventually this book will be translated into English, as its style is refreshingly different from that of any other books on the subject and it will, inevitably, gain a wider audience in English.

I will certainly be adding Vers & Virus to my expanding library of security-related books. At this rate I will need to open some form of public library, as the supply of high quality anti-virus and security-related books seems to be never ending!

Found a useful infosecurity book? Why not tell us about it so we can let others know - email: editor@virusbtn.com.

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest articles:

VB2018 paper: Fake News, Inc.

As the world grapples with massive disinformation campaigns waged by the intelligence agencies of hostile nations, we should not forget that such activities are not limited to the purview of the Bears or Pandas of the world, and that even relatively…

Alternative communication channel over NTP

Nikolaos Tsapakis explores Network Time Protocol (NTP) as an alternative communication channel, providing practical examples, code, and the basic theory behind the idea.

VB2018 paper: Under the hood: the automotive challenge

In an average five-year-old car, there are about 30 different computers on board. In an average new car, there are double that number, and in some cases up to 100. That’s the size of network an average SMB would have, only there’s no CIO/CISO, and…

VB2018 paper: Android app deobfuscation using static-dynamic cooperation

Malicious Android applications are quite common, and can even be found from time to time in the Google Play Store. Thus, a lot of work has been done in both industry and academia on Android app analysis, and in particular, static code analysis. One…

VB2018 paper: Anatomy of an attack: detecting and defeating CRASHOVERRIDE

CRASHOVERRIDE is the first publicly known malware designed to impact electric grid operations. Reviewing previously unavailable data covering logs, forensics, and various incident information, in this paper Joe Slowik outlines the CRASHOVERRIDE…


Bulletin Archive

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.