Phil Stokes, Author at SentinelOne

macOS Sequoia | What’s New in Privacy and Security for Enterprise?

Phil Stokes / September 17, 2024

Monday September 16th saw Apple release the newest version of its Mac operating system, macOS 15 Sequoia, and SentinelOne was delighted to announce support for this version of macOS on the day of release.

labs

From Amos to Poseidon | A SOC Team’s Guide to Detecting macOS Atomic Stealers 2024

Phil Stokes / September 12, 2024

Keeping track of the many variants of Atomic Stealer can be a challenge for SOC teams. Our guide breaks down the latest versions.

labs

Security Research

Exploring the VirusTotal Dataset | An Analyst’s Guide to Effective Threat Research

Aleksandar Milenkoski & Jose Luis Sánchez Martínez (VirusTotal) / August 29, 2024

We teamed up with VirusTotal to take a deep dive into the platform's extensive query capabilities through both the web and API interfaces.

labs

macOS Cuckoo Stealer | Ensuring Detection and Defense as New Samples Rapidly Emerge

Phil Stokes / May 9, 2024

Learn about the mechanics of macOS Cuckoo Stealer, discover extended indicators and ensure your organization remains protected.

labs

macOS Adload | Prolific Adware Pivots Just Days After Apple’s XProtect Clampdown

Phil Stokes / May 1, 2024

Learn about the latest Adload adware variants, written in Go and intended to bypass Apple's recent XProtect updates.

Backdoor Activator Malware Running Rife 18

labs

Backdoor Activator Malware Running Rife Through Torrents of macOS Apps

Phil Stokes / February 1, 2024

A new campaign is spreading macOS malware through infected copies of popular applications and productivity tools.

labs

The Many Faces of Undetected macOS InfoStealers | KeySteal, Atomic & CherryPie Continue to Adapt

Phil Stokes / January 15, 2024

Learn about the latest threats to macOS as Infostealers continue to rapidly adapt to evade static signatures.

labs

macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks

Phil Stokes / January 11, 2024

The rise of macOS infostealers continues with the latest entrant aiming to compromise business environments with targeted social engineering lures.

labs

Protecting macOS | 7 Strategies for Enterprise Security in 2024

Phil Stokes / January 2, 2024

What can defenders learn from last year's bumper crop of macOS malware? Bolster your defenses with these insights into the latest attacker trends.

labs

DPRK Crypto Theft | macOS RustBucket Droppers Pivot to Deliver KandyKorn Payloads

Phil Stokes / November 27, 2023

Two apparently separate North Korean crypto theft campaigns targeting macOS users appear to be linked as threat actors mix and match droppers and payloads.