Here's one way to identify a "leaker" from Spectre Portal 3.3 and later.

https://goo.gl/d6DKYA