Phil Stokes, Author at SentinelOne | Page 10 of 19

ABOUT

VISIT SENTINELONE.COM

Phil Stokes

Phil Stokes is a Threat Researcher at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

The Good, the Bad and the Ugly in Cybersecurity – Week 50

The Good, the Bad and the Ugly | 4 minute read

APT32 Multi Stage MacOS Trojan Innovates On Crimeware Scripting Technique 7

APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique

Phil Stokes / December 2, 2020

Vietnamese-linked APT group OceanLotus have innovated and imitated in their latest macOS trojan, while also leaving a mysterious hard-coded calling card.

The Good, the Bad and the Ugly in Cybersecurity – Week 47

The Good, the Bad and the Ugly | 4 minute read

What Happened to My Mac? Apple’s OCSP Apocalypse

macOS | 9 minute read

macOS Big Sur Has Landed | 10 Essential Security Tips You Should Know

macOS | 7 minute read

The Good, the Bad and the Ugly in Cybersecurity – Week 45

The Good, the Bad and the Ugly | 4 minute read

Resourceful MacOS Malware Hides In Named Fork 5

Security Research

Resourceful macOS Malware Hides in Named Fork

Phil Stokes / November 5, 2020

Threat actors targeting macOS are deploying a new trick to hide payloads and avoid detection thanks to an old technology: the named resource fork.

The Good, the Bad and the Ugly in Cybersecurity – Week 41

The Good, the Bad and the Ugly | 5 minute read

How to Detect FinFisher Spyware on macOS

macOS | 8 minute read

The Good, the Bad and the Ugly in Cybersecurity – Week 38

The Good, the Bad and the Ugly | 4 minute read

1 … 8 9 10 11 12 … 19

Next

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets
June 9, 2025
FreeDrain Unmasked | Uncovering an Industrial-Scale Crypto Theft Network
May 8, 2025
Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries
April 28, 2025

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2025 SentinelOne, All Rights Reserved.