š ļø Former Sysadmin, now Pentester | Microsoft MVP | Helping IT teams make their environment harder to attack | @SecurIT360 & @CyberThreatPOV
Joined November 2010
- Tweets 51,945
- Following 2,883
- Followers 16,522
- Likes 129,758
3,674 Photos and videos
Pinned Tweet
Jun 10
If you're an IT Admin and you follow this list, and you put in the work to fix the findings, your environment will be more secure.
10
64
456
20,177
spencer retweeted
Thereās a huge difference between making tools š§° and making productsā¦.
There is an increasingly widespread belief in techland that AI presents an existential threat to the software-as-a-service industry, which only a few years ago looked unstoppable economist.com/business/2026/ā¦
7
1
22
1,754
spencer retweeted
Back from break and now @IceSolst carrying us through Practical Security Engineering! And a sweet "How do we secure our product?" brainstorming session with the live chat for @_ContinuumCon_ š continuumcon.com/
2
6
41
4,172
18h
Super awesome presentation on AI agent security and sandboxes by @ZackKorman. Like seriously if you are trying to navigate this crazy AI stuff, Zackās a great guy to follow.
Best part is Zack literally is incapable of sugar coating things. Super pragmatic/no bs kinda approach
Cc @_ContinuumCon_
2
6
30
3,260
spencer retweeted
ROCKSTARS helping start the party for ContinuumCon today!! continuumcon.com/
2
5
24
3,392
19h
The legend @ZackKorman is live!! Go check out AI sandbox escaping shenanagins!!
ContinuumCon 2026 - Day 2 youtube.com/live/eaksNdtMpBEā¦ via @YouTube
2
6
864
19h
š
Jun 13
The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees.
The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance.
Access to all other Claude models is not affected.
We apologize for this disruption to our customers. We believe this is a misunderstanding and are working to restore access as soon as possible.
Read our full statement: anthropic.com/news/fable-mytā¦
2
19
1,483
spencer retweeted
Jun 12
big thanks to everyone who hung out with us for @_ContinuumCon_ today
see you tomorrow for more fun āļø
3
8
44
4,737
Jun 13
If you want some no BS, down to earth, seriously awesome guidance on security engineering, then this is the workshop for you.
If you do any coding whatsoever this will be beneficial to watch and learn.
Also solst is low-key funny too, always fun to watch him do his thing
Jun 11
This Saturday at 3:45 ET Iāll be presenting a live intro to my security engineering course there (practical guide to SAST, DAST, etc)
1
1
19
2,114
Jun 13
The master of AI agent skills is giving a workshop about how to break out of AI agent sandboxes.
Rumor has it that if you comment the word āskillsā during his presentation he will send you his 10-step AI agent security guide
You gotta be there live to get it!
Jun 12
Quick reminder that I have a ContinuumCon workshop tomorrow (1:15pm ET) on escaping AI agent sandboxes.
Workshop so dangerous that my own product keeps alerting on my "research".
2
2
10
3,463
spencer retweeted
Jun 12
This is exactly why Microsoft doesn't provide EDR exclusions - it's a foot gun
I've had maybe 5 MDE deployments out of well over a hundred that actually needed them, and it's been very LOB app specific every time
Jun 12
Sometimes EDR exclusions are necessary. But far too often I find leftover crud that should have been removed but everyone forgot about. In the worst cases this allows silly āattackersā like me to fly a bit more under the radar
10
5
64
13,568
spencer retweeted
Jun 12
Quick reminder that I have a ContinuumCon workshop tomorrow (1:15pm ET) on escaping AI agent sandboxes.
Workshop so dangerous that my own product keeps alerting on my "research".
9
8
53
8,607
Jun 12
Tell me youāve worked in IT without telling me youāve work in itā¦
Sneaker-netting
87
73
11,660
spencer retweeted
Jun 12
š„š„š„
x.com/IceSolst/status/206548ā¦
Jun 12
Any time I see @techspence present, I think holy shit, heās such a professional
Iāve taken many courses but this guy is on another level
This is his attacking AD course on @_ContinuumCon_ (live now)
1
12
3,840
spencer retweeted
Jun 12
And @techspence CRUSHED IT for the live presentation of his "Killing Active Directory Attack Paths Once and For All" workshop for @_ContinuumCon_ !!!
3
6
78
6,188
spencer retweeted
Jun 12
Any time I see @techspence present, I think holy shit, heās such a professional
Iāve taken many courses but this guy is on another level
This is his attacking AD course on @_ContinuumCon_ (live now)
8
16
155
14,383
spencer retweeted
Jun 12
Episode 2 | Why EDR Misses Modern Threats x.com/i/broadcasts/1dKrPPNPzā¦
6
25
1,397
Jun 12
Sometimes EDR exclusions are necessary. But far too often I find leftover crud that should have been removed but everyone forgot about. In the worst cases this allows silly āattackersā like me to fly a bit more under the radar
6
2
39
20,188
Jun 12
Let domain users run programs as administrators? How bad could it beā¦
12
2
42
4,984
spencer retweeted
Jun 12
Hello friends. I published my first article on Medium.
medium.com/p/your-ir-plan-isā¦
My plan is to turn this into a mini series and hopefully help someone looking for guidance on incident response management. Not just from the framework perspective but from practitioners. This is also for me to practice writing so thanks in advance for any feedback.
18
16
70
4,920