Flare
Leaky Weekly
There’s so much happening in the world of cybercrime, it’s hard to keep up for anyone, including security practitioners. Dive in with security researcher Nick Ascoli as he covers the most pressing stories on data leaks, cybercrime, and the dark web from the last week or so. Tune in with short and sweet episodes in about 15 minutes.
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
React2Shell (CVE-2025-55182), 41% of Infostealer Victims Infected by Video Game Files 11.12.2025 8:33
On this episode of Leaky Weekly, host and security researcher Nick Ascoli discusses findings from Flare Research including: React2Shell (CVE-2025-55182) vulnerability and threat actor chatter Findings from analysis of 50,000 stealer log infections He also mentions instructions for a giveaway for CTF players who would like another shot at unlocking a shirt from a past challenge… Here are the resour...
Attack on Identity: Dissecting Microsoft’s 2025 Digital Defense Report 06.11.2025 24:46
On this episode of Leaky Weekly, host and security researcher Nick Ascoli and Flare’s Identity Security Expert Mike Iaconianni dig into their responses and questions to the Microsoft 2025 Digital Defense Report. Here are the resources on the stories: Microsoft Digital Defense Report 2025 https://www.microsoft.com/en-us/corporate-responsibility/cybersecurity/microsoft-digital-defense-report-2025/ S...
NPM Supply Chain Attack, Fake Europol Bounty, and Operation Secure 08.10.2025 7:37
On this episode of Leaky Weekly, host and security researcher Nick Ascoli covers the NPM supply chain attack, fake Europol bounty, and Operation Secure. Here are the resources on the stories: Largest NPM attack in crypto history stole less than $50: SEAL (Cointelgraph) Breakdown: Widespread npm Supply Chain Attack Puts Billions of Weekly Downloads at Risk (Palo Alto Networks) The largest supply-ch...
Spilling the Tea on the Tea App and TeaOnHer, and Salesforce Tenant Breaches 10.09.2025 10:09
On this episode of Leaky Weekly, host and security researcher Nick Ascoli spills the tea on data leaks from Tea and TeaOnHer, as well as attacks on Salesforce tenants. Here are the resources on the stories: The Cost of a Call: From Voice Phishing to Data Extortion (Google Threat Intelligence Group) ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH (BleepingCompute...
Use a Stealer Log, Go to Prison (Part 2): PowerSchool and Snowflake Tenant Breach Arrests 27.08.2025 11:05
On this episode of Leaky Weekly, host and security researcher Nick Ascoli gets into stealer logs and arrests in the last few weeks of the threat actors who targeted PowerSchool and Snowflake tenants. This is part 2 of a 2 part series, Use a Stealer Log, Go to Prison. Missed part 1? Check it out here on Apple Podcasts or Spotify . Here are the resources on the stories: Cybersecurity Incident Notice...
Use a Stealer Log, Go to Prison (Part 1): IntelBroker and Scattered Spider(?) Arrests 13.08.2025 15:02
On this episode of Leaky Weekly, host and security researcher Nick Ascoli gets into stealer logs and arrests in the last few weeks of threat actor IntelBroker and threat actors who targeted retail companies in the U.K. using the DragonForce encryptor. This is part 1 of a 2 part series, Use a Stealer Log, Go to Prison. Here's part 2: on Apple Podcasts or Spotify . Here are the resources on the stor...
LockBit's Fall and the Rise of Ransomware Chaos 2025 with Tammy Harper 02.07.2025 16:26
On this episode of Leaky Weekly, Tammy Harper, Senior Threat Intelligence Researcher at Flare joins host and security researcher Nick Ascoli. Tammy explains: LockBit’s fall, the affiliate exodus, and rise of RansomHub “Ransomware without the ware” – cross-posting as the norm now Noise in the ransomware underground More episodes from Tammy and Nick’s conversation on ransomware will be coming in the...
To Extort or Not to Extort: Ransomware Group Tactics in 2025 with Tammy Harper 18.06.2025 22:16
On this episode of Leaky Weekly, Tammy Harper, Senior Threat Intelligence Researcher at Flare joins host and security researcher Nick Ascoli. They talk about shifts in the ransomware ecosystem in 2025. Tammy explains: Ransomware group adaptations based on 2024 events Why data-only extortion isn’t catching on How access to leaked data is shaping both victim decision-making and long-term exposure Mo...
Committing Cybercrime Gets 5% Easier Each Year?: Ransomware Recap 2024-2025 with Tammy Harper 03.06.2025 11:30
On this episode of Leaky Weekly, Tammy Harper, Senior Threat Intelligence Researcher at Flare joins host and security researcher Nick Ascoli. They discuss ransomware in 2024, and how that affects the ransomware ecosystem of 2025. Tammy goes over: 2024 ransomware ecosystem summary 2025 disruptions in the wake of 2024 takedowns Compromised credentials’ growing role in cybercrime More episodes from T...
PowerSchool Hack; Takedowns and Arrests and Leaks, Oh My!; and ITRC Breach Report Findings 20.02.2025 24:27
On this first episode of Leaky Weekly after our winter break, host and security researcher Nick Ascoli covers recent events in the cybercrime space the PowerSchool hack, Cracked & Nulled takedown & arrests, Otelier data leak, DeepSeek data leak, and Identity Theft Resource Center (ITRC) breach report findings. Here are the resources Nick mentions: Children’s data hacked after school softwa...
Arrests, RedLine & META Infrastructure Takedown, and MOVEit Leaks 03.12.2024 15:48
On this latest episode of Leaky Weekly, host and security researcher Nick Ascoli covers recent news in the cybercrime space such as the USDoD arrest, Judische/Waifu (Connor Moucka) arrest, RedLine infrastructure takedown and arrest(s), and MOVEit leaks. Here are the resources Nick mentions: The unmasking of threat actor USDoD (Cybernews) USDoD, the hacker allegedly behind attacks on FBI and Airbus...
Dark Web Forum Arrests, Columbus Ransomware Attack Updates, and American Background Info Data Leak 17.10.2024 20:50
On this latest episode of Leaky Weekly, host and security researcher Nick Ascoli covers recent news in the cybercrime space such as the LockBit arrests, an update to the Columbus ransomware attack, Bohemia arrests, and MC2 data leak. Here are the resources Nick mentions: LockBit power cut: four new arrests and financial sanctions against affiliates (Europol) Evil Corp: Behind the Screens (National...
AWS Takeover Campaign, Ransomware Attack on Columbus, and City of Columbus Sues Ransomware Researcher Whistleblower 19.09.2024 14:26
In Leaky Weekly’s third episode, host and security researcher Nick Ascoli covers recent news in the cybercrime space including the AWS takeover campaign, ransomware attack on Columbus, Ohio, and the city of Columbus suing a ransomware researcher whistleblower. Here are the resources Nick mentions: Leaked Environment Variables Allow Large Scale Extortion Operation in Cloud Environments Ransomware G...
Background Check Organization Breach, a Repossessed Ransomware Blog, Feuding Forums, and Double Arrest of “J.P. Morgan” 21.08.2024 10:31
In Leaky Weekly’s second episode, host and security researcher Nick Ascoli covers recent news in the cybercrime space such as the National Public Data breach, Dispossesser ransomware operation repossession, feuding forums, and the arrest of two “J.P. Morgans.” Here are the resources Nick mentions: National Public Data confirms breach, scope unknown (TechTarget) National Public Data com Hack Expose...
Pilot: Stealer Log Abuse, Hacktivist Groups, and Unauthorized Access Through Third-Parties 07.08.2024 14:51
In Leaky Weekly’s first episode, host and security researcher Nick Ascoli covers recent news in the cybercrime space, such as the AT&T breach, Snowflake tenant breaches, the hacktivist group SiegedSec, and Disney hack. Here are the resources Nick mentions: The Sweeping Danger of the AT&T Phone Records Breach (Wired) Massive Ticketmaster, Santander data breaches linked to Snowflake cloud st...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.