
SECURITY.COM The Podcast
Join Dan Mellinger and Paul Miller as they explore cybersecurity topics, bridging the gap between security technology and the human element. Each episode covers threat intelligence, data security, and SSE, offering in-depth intel and real talk. The podcast releases new episodes every first and third week of the month.
Episodes
The Parasite in the Machine: Unmasking the Speagle Infostealer
Symantec Threat Hunters found malware that turns a legitimate document-security platform into its own exfiltration channel. Infostealer.Speagle hijacks Cobra DocGuard to chase Chinese ballistic missile documents — then uses the platform's own driver to delete itself. A look at the Runningcrab activity cluster. Listen in.
The Death of SIEM
SIEM was supposed to be the nerve center of every security operation — collect every log, correlate every event, surface every threat. Most organizations ended up with an expensive log warehouse that generates more noise than signal.Recorded live from RSAC, Dan sits down with Justin Falck — Head of Product for Endpoint at the Enterprise Security Group at Broadcom — to break down where the SIEM mod
Hoodies to Headlines: The Evolution of Cybersecurity PR w/ W2 Communications
The Evolution of Cybersecurity Media & PR — with Tony Welz, W2 CommunicationsCybersecurity went from a niche trade-press beat to a nation-state strategy domain in about 25 years. Dan Mellinger sits down with Tony Welz, co-founder of W2 Communications — a strategic communications agency that's specialized in cybersecurity for 23 years — to unpack how the story got told along the way, and wh
Iran's Cyber Warfare Playbook: What Defenders Need to Know Right Now
Iran has always been active in cyberspace — but with U.S. and Israeli kinetic operations underway in March 2026, they're under pressure to make an impact, and cyber is where they can fight asymmetrically. Dan Mellinger and Symantec threat intelligence veteran Dick O'Brien break down what defenders are actually seeing right now: active intrusions on 5–6 organizations in the U.S. and Canada,
A Brief History of DLP
How did Data Loss Prevention go from a forgotten niche to a boardroom necessity? In this episode, host Dan Mellinger sits down with Matt Jones, Channel Technical Director for Information Security at Broadcom's Enterprise Security Group, to trace the full arc of DLP — from its earliest roots to its role in today's enterprise security stack.Matt brings over two decades of hands-on experience
AI-Hacking: Red Team vs. Blue Team
As AI shifts from passive large language models (LLMs) to active "Agents" capable of executing tasks, the cybersecurity landscape is hitting a fever pitch. In this episode, recorded ahead of their Black Hat Europe presentation, your go-to cybersecurity communicator Dan Mellinger sits down with Paul Miller (Threat Intelligence & Ops Leader) and Dick O’Brien (Principal Research Editor,
Personal Privacy w/ Electronic Frontier Foundations (EFF)
In this episode, Dan Mellinger and Paul Miller host Cooper Quintin from the Electronic Frontier Foundation (EFF) to discuss the evolving landscape of cybersecurity, privacy threats, and the importance of human rights in the digital age. They explore the impact of smartphones on privacy, the role of tools like Privacy Badger, and the need for comprehensive privacy legislation. The conversation also
2026 Threat Predictions
Dick O'Brien details the Symantec Threat Hunters cybersecurity predictions for 2026. One of which we've already seen come to pass in January.Five Cyber Predictions for 2026: https://www.security.com/feature-stories/five-cyber-predictions-2026
AI Code Insecurity w/ Veracode
Dan Mellinger and Paul Miller chat with the legendary Chris Wysopal. They discuss the evolution of cybersecurity, the impact of AI on code security, and the responsibilities of developers in the age of automated coding tools. They explore the legacy of The L0pht, the challenges of integrating AI into security practices, and the importance of maintaining vigilance in code security despite advanceme
Ransomware in 2025
The cyber-extortion epidemic reached new heights in 2025, with a record number of attacks recorded. This increase is being powered by a new breed of attackers who eschew encryption and rely solely on data theft as leverage for extortion.Recorded live at Black Hat Europe in London, Symantec & Carbon Black Threat Hunter, Dick O'Brien shares how Ransomware strategies shifted in 2025 and what&
Cloaking Data from AI with Seclore
Dan talks data security in the age of AI with the CEO of Seclore, Vishal Gauri.
Chasing Vulns w/ Jerry Gamblin
Dan Mellinger interviews the legendary cybersecurity vulnerability researcher and open-source tool developer, Jerry Gamblin. They explore the importance of understanding CVEs, the role of MITRE, and the significance of the CNA Scorecard in improving data quality. Jerry shares insights on the challenges of managing vulnerabilities, the impact of decentralization, and the need for collaboration amon
Managing Security Analyst Burnout
Paul Miller talks about a topic close to his heart: managing Security Operations team workload. He discusses the causes of analyst burnout, along with signs and ways to help mitigate the impacts, both human and operational.
Authentically Marketing Cybersecurity
Dan sits down with Monica White, the CMO of the Enterprise Security Group at Broadcom (and his boss), to talk about the often winding career paths in marketing, early best practices, and understand how authenticity is the key to build durable brands.
From Cybersecurity Products to Platforms
Dan sits down with his colleague Nate Fitzgerald (head of product management for ESG) to discuss how and why the cybersecurity market has been transitioning from individual Products to (sometimes) integrated Platforms.
Cybersecurity Testing: Tuned for the Test or Tuned for the Real World?
Simon Edwards, Founder and CEO of SE Labs, and Adam Bromwich, CTO of the Enterprise Security Group at Broadcom join Dan in Las Vegas to dive into the details on cybersecurity testing which has been one of the more consistently dramatic topics in the industry.Definitely check out SE Labs to learn more from the best real world performance testing in the industry: https://selabs.uk
Diving Deep Into Vulnerability Risk Modeling w/ Empirical Security
Recorded from Hacker Summer Camp in Las Vegas, Dan dives deep into the history and current state of measuring cybersecurity vulnerability risk at scale with the team from Empirical Security. Ed, Michael, and Jay discuss some of the history of vulnerability measurement through the last decade and how they thin the time is now for organizations to start applying highly-specific local vulnerability m
Cybersecurity Tips For Seniors and Parents w/ Alex East
Dan sits down with author Alex East to discuss cybersecurity tips for Seniors and Parents. You can find Alex's books on Amazon: https://www.amazon.com/stores/Alex-Ea...Sorry about the video quality, one of the SSDs on the external recorder was having issues.
Preventing a Nuclear Apocalypse with Threat Intel
Paul Miller recounts a critical incident involving threat intelligence that potentially prevented a nuclear disaster. They explore the geopolitical context surrounding the incident, the challenges of incident response, and the complexities of attributing cyber attacks to specific threat actors. The conversation highlights the importance of threat intelligence in understanding and mitigating risks,
Navigating Hacker Summer Camp
In the first episode of SECURITY.COM The Podcast, hosts Dan Mellinger and Paul Miller discuss the upcoming Hacker Summer Camp, which includes major cybersecurity conferences like DEF CON, Black Hat, and B-Sides. They provide an overview of each event, highlighting their unique focuses and the importance of networking and learning. The conversation also covers essential safety tips for attendees, e
Welcome To SECURITY.COM The Podcast
Join Dan Mellinger, your go-to cybersecurity communicator, and Paul Miller, seasoned threat intelligence and operations leader, on SECURITY.COM The Podcast, a show that bridges the gap between cutting-edge security tech and the humans who make it work. Delivering enterprise-grade security insights for all.Every first and third week each month, they unpack hard-nosed technical deep dives—from threa











