Who is SophosLabs: Vincent Lynch, Senior Threat Researcher

Filed Under: SophosLabs

SophosLabs is at the center of Sophos. It's the place where highly skilled experts in the field work round the clock to build protection from the latest threats.

But who works there?

This week we're talking to Vincent Lynch, Senior Threat Researcher from SophosLabs UK.

Vincent Lynch, Senior Threat Researcher at SophosLabs UKI grew up not so far away from SophosLabs UK, in Milton Keynes. I spent eight years at Warwick University. I finished a PhD in mathematics, with no great desire to stay in academia, but no real plans to do anything else.

After a few weeks poring through endless job adverts, the opening of ‘virus researcher’ jumped out at me. It just so happened I’d taken an interest in assembly language for a bit when I was younger, so I could convincingly argue that I’d have the patience to trawl through binary code, byte by byte, working out exactly what it’s doing.

I started at Sophos in 2004, and I spent my first five years here analysing viruses and spam, and really getting into every aspect of the work I could - writing generic detection rules, analyzing encryption routines used in obfuscating executable files, working out how to undo the damage malware has done to a system, and training new recruits to do all of these things.

About five years ago, there was an opportunity for someone to focus on testing the core virus scanning engine – in particular someone familiar with malware, and also with VDL, the 'Virus Description Language' Sophos uses to write the detection updates we publish several times a day. I volunteered to do this for six months, and five years later testing is still essentially what I do.

I work closely with the threat researchers, but also with the engine developers and QA engineers, ensuring that Sophos Antivirus has the low-level features the researchers need to do their job, and that it all works as required.

Outside of work, I’ve taken up music quite seriously in recent times, playing guitar, bass, drums, violin, mandolin, and a few other things. None of them to any great standard, but well enough to get by playing in a few local bands over the years. I’ve also been taking classes in improvised comedy, but it’ll be some time before I’m doing that in front of a paying audience.

What about the future of security?

With children using sophisticated technology from a very early age, people are surely going to become more security-aware, and have higher expectations of security from others, and from companies that store their information.

It would be good to see application developers favouring open file formats for document files, with more built-in validation. There’s a lot less scope for vulnerabilities if everyone agrees to simply not load files that don’t conform to a standard.

At the same time, criminals are only going to work harder to trick people or work around software security.

My top security tips?

A lot of security isn’t about right or wrong ways to do things, it’s about being aware of the risks you’re taking. It’s incredibly convenient having all your data available at the touch of a button, but that one bundle of data is also very valuable to anyone else who can get hold of it.

It’s scary how often proving your identity comes down just to knowing your date of birth, your address, or your mother’s maiden name – maybe not your closest guarded secrets. You’ll probably let your birthday slip to someone at some point, but maybe you don’t need it on your Facebook profile.

Do you really need to have your credit card details saved on your phone? Perhaps you do – but if so, you’d better keep your phone locked with a decent password or keycode. And always question why anyone else needs your information, particularly over the phone or email.

Want to know more about SophosLabs?

Read the other articles in this series on Rowland Yu, Peter Szabo, Numaan Huq, Joanne Garvey and James Wyke who all work at SophosLabs, check out our YouTube playlist, or see more on the Sophos website.

, , , ,

You might like

2 Responses to Who is SophosLabs: Vincent Lynch, Senior Threat Researcher

  1. Wolf_Star · 309 days ago

    Nice informative intro...I would re-think the photo, however. It bears a frightening resemblance to the photos of James Eagan Holmes. But if that's the look you're going for, then never mind. :-P

  2. I don't know who James Eagan Holmes is but he looks like a young Malcolm McLaren to me! It's a generational thing

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Maxim is a technologist and educator who works in product marketing at Sophos. He is a board member and former executive director of StopBadware. He lives outside Boston and has an unhealthy love of dessert.