Phil Stokes, Author at SentinelOne

VISIT SENTINELONE.COM

Phil Stokes

Phil Stokes is a Threat Researcher at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

Backdoor Activator Malware Running Rife Through Torrents of macOS Apps

From the Front Lines, macOS | 9 minute read

The Many Faces of Undetected macOS InfoStealers | KeySteal, Atomic & CherryPie Continue to Adapt

From the Front Lines | 7 minute read

Apple’s macOS Ventura | 7 New Security Changes to Be Aware Of

Company | 11 minute read

macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks

From the Front Lines, macOS | 11 minute read

Protecting macOS | 7 Strategies for Enterprise Security in 2024

macOS | 12 minute read

DPRK Crypto Theft | macOS RustBucket Droppers Pivot to Deliver KandyKorn Payloads

From the Front Lines | 11 minute read

11 Ways To Tweak Radare2 For Faster And Easier MacOS Malware Analysis 3

Security Research

11 Ways to Tweak radare2 for Faster and Easier macOS Malware Analysis

Phil Stokes / October 31, 2023

Simplifying radare2 for macOS malware research, these tips and tricks will help to improve workflow and supercharge productivity.

macOS Malware 2023 | A Deep Dive into Emerging Trends and Evolving Techniques

macOS | 9 minute read

Sonoma in the Spotlight | What’s New and What’s Missing in macOS 14

macOS | 8 minute read

Bloated Binaries How To Detect And Analyze Multi Megabyte MacOS Malware 8

Security Research

Bloated Binaries | How to Detect and Analyze Large macOS Malware Files

Phil Stokes / August 29, 2023

Massive malware binaries are becoming more common on macOS and can cause problems for detection and analysis. Here's how we can successfully deal with them.

1 2 3 … 17

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

LABScon23 Replay | Meet the Iranian Company Powering Russia’s Drone War on Ukraine
April 23, 2024
AcidPour | New Embedded Wiper Variant of AcidRain Appears in Ukraine
March 21, 2024
Doppelgänger | Russia-Aligned Influence Operation Targets Germany
February 22, 2024

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2024 SentinelOne, All Rights Reserved.