Phil Stokes, Author at SentinelOne | Page 5 of 19

ABOUT

VISIT SENTINELONE.COM

Phil Stokes

Phil Stokes is a Research Engineer at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

Atomic Stealer | Threat Actor Spawns Second Variant of macOS Malware Sold on Telegram

macOS | 16 minute read

LockBit Ransomware: Protect Your macOS Today

From the Front Lines, macOS | 10 minute read

Session Cookies, Keychains, SSH Keys and More | 7 Kinds of Data Malware Steals from macOS Users

macOS | 14 minute read

Hunting for Honkbox | Multistage macOS Cryptominer May Still Be Hiding

macOS | 17 minute read

macOS Payloads | 7 Prevalent and Emerging Obfuscation Techniques

macOS | 10 minute read

7 Ways Threat Actors Deliver macOS Malware in the Enterprise

macOS | 18 minute read

Top 10 macOS Malware Discoveries in 2022

macOS | 16 minute read

V for Ventura | How Will Upgrading to macOS 13 Impact Organizations?

macOS | 10 minute read

Lazarus ‘Operation In(ter)ception’ Targets macOS Users Dreaming of Jobs in Crypto

From the Front Lines | 5 minute read

XCSSET Malware Update | macOS Threat Actors Prepare for Life Without Python

macOS | 10 minute read

1 … 3 4 5 6 7 … 19

Next

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

Silent Brothers | Ollama Hosts Form Anonymous AI Network Beyond Platform Guardrails
January 29, 2026
LABScon25 Replay | How to Bug Hotel Rooms v2.0
January 21, 2026
LLMs in the SOC (Part 1) | Why Benchmarks Fail Security Operations Teams
January 20, 2026

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2026 SentinelOne, All Rights Reserved.