Phil Stokes, Author at SentinelOne | Page 6 of 18

ABOUT

VISIT SENTINELONE.COM

Phil Stokes

Phil Stokes is a Threat Researcher at SentinelOne, specializing in macOS threat intelligence, platform vulnerabilities and malware analysis. He began his journey into macOS security as a software developer, creating end user troubleshooting and security tools just at the time when macOS adware and commodity malware first began appearing on the platform. Phil has been closely following the development of macOS threats as well as researching Mac software and OS vulnerabilities since 2014.

Top 10 macOS Malware Discoveries in 2021 | A Guide To Prevention & Detection

macOS | 16 minute read

The Good, the Bad and the Ugly in Cybersecurity – Week 49

The Good, the Bad and the Ugly | 4 minute read

The Good, the Bad and the Ugly in Cybersecurity – Week 47

The Good, the Bad and the Ugly | 4 minute read

Backdoor macOS.Macma Spies On Activists But Can’t Hide From Behavioral Detection

macOS | 8 minute read

Infect If Needed A Deeper Dive Into Targeted Backdoor MacOS Macma 7

Security Research

Infect If Needed | A Deeper Dive Into Targeted Backdoor macOS.Macma

Phil Stokes / November 15, 2021

SentinelLabs reveals further IoCs, behavior and analysis around suspected APT attack targeting macOS users and Hong Kong pro-democracy activists.

The Good, the Bad and the Ugly in Cybersecurity – Week 45

The Good, the Bad and the Ugly | 4 minute read

Apple’s macOS Monterey | 6 Security Changes That May Have Passed You By

macOS | 7 minute read

The Good, the Bad and the Ugly in Cybersecurity – Week 43

The Good, the Bad and the Ugly | 4 minute read

Case Studies In MacOS Malware String Decryption With Radare2 13

Security Research

Techniques for String Decryption in macOS Malware with Radare2

Phil Stokes / October 12, 2021

In Part 3 of our macOS reversing series, we look at three different macOS malware samples and walk you through how to decipher encrypted strings.

The Good, the Bad and the Ugly in Cybersecurity – Week 41

The Good, the Bad and the Ugly | 5 minute read

1 … 4 5 6 7 8 … 18

Next

SentinelLabs

In the era of interconnectivity, when markets, geographies, and jurisdictions merge in the melting pot of the digital domain, the perils of the threat ecosystem become unparalleled. Crimeware families achieve an unparalleled level of technical sophistication, APT groups are competing in fully-fledged cyber warfare, while once decentralized and scattered threat actors are forming adamant alliances of operating as elite corporate espionage teams.

Recent Posts

LABScon24 Replay | Resilience and Protection in the Windows Ecosystem
March 12, 2025
LABScon24 Replay | Farmyard Gossip: The Foreign Footprint in US Agriculture
March 5, 2025
Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition
February 25, 2025

Sign Up

Get notified when we post new content.

Thanks! Keep an eye out for new content!

Twitter
LinkedIn

©2025 SentinelOne, All Rights Reserved.