How This Briefing Works
This report opens with key findings, then maps the gaps between what Exads discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.
Key Findings
Key Findings
1 detection across 1 site100% pre-consent activity
CRITICAL
Pre-Consent Activity
Exads was observed loading and executing before user consent was obtained on 100% of sites where it was detected.
GDPRePrivacy
Disclosure Gaps
Claims vs. Observed Behavior
1 gaps
pending
UNKNOWN
They Claim
“Unknown - requires claims extraction via CDT”
Observed Behavior
Runtime evidence shows C06/C09 patterns
Customer Impact
What This Means For You
Programmatic consent bypass exposes visitor data to RTB auction participants before lawful basis established. Behavioral fingerprinting enables tracking across advertiser network without user awareness.
Recommended Actions
What To Do About It
Role-specific actions based on observed behavior
If You Use Exads
- →Audit RTB bidstream data exposure
- →Confirm consent before ad serving starts
- →Review vendor list: can you enumerate all auction participants?
If You're Evaluating Exads
- →Test page load: does Exads fire before consent banner?
- →Ask: what visitor data enters RTB bidstream?
- →Verify privacy policy discloses programmatic data sharing
Negotiation Leverage
- →C06 fingerprinting enables cross-site tracking. Is this disclosed in privacy policy?
- →C09 consent bypass: RTB auctions occur pre-consent. How do you enforce consent-first bidding?
- →Bidstream sharing = uncontrolled third-party data exposure. Can you provide exhaustive participant list?
Runtime Detections
Runtime Detections
2 BTI-C CODES
BLACKOUT observed this vendor's JavaScript executing in a live browser and classified each hostile behavior using our BTI-C (Behavioral Threat Intelligence — Capability) taxonomy. These are not theoretical risks — each code below was triggered by something we watched this vendor's code actually do.
BTI-C06Behavioral Biometrics
Keystroke/mouse tracking
BTI-C09Consent Bypass
Ignoring CMP signals
IOC Manifest
IOC Manifest
74 INDICATORS
Indicators of compromise across 3 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.
TRACK
*www.exads.com/_next/static/chunks/webpack-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/framework-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/main-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/610-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/1WXeTJr04o8zpwDk8ZbsC/_buildManifest.js*
Tracking script
TRACK
*www.exads.com/_next/static/1WXeTJr04o8zpwDk8ZbsC/_ssgManifest.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/pages/%5B%5B...slug%5D%5D-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/336-*.js*
Tracking script
TRACK
*www.exads.com/_next/static/chunks/pages/_app-*.js*
Tracking script
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/products.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/about-us.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/get-started.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/features.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/business-cases.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/ad-formats.json*
Data collection endpoint
TRACK
*www.exads.com/_next/static/chunks/pages/blog-*.js*
Tracking script
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/tag/ctv.json*
Data collection endpoint
TRACK
*www.exads.com/_next/static/chunks/pages/blog/tag/%5Bslug%5D-*.js*
Tracking script
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/tag/integrations.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/tag/events.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/why-use-exads-for-ctv-advertising-business.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/exads-now-integrates-with-celeris-to-simplify-card-payments.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/blog/exads-is-attending-the-tes-affiliate-conference.json*
Data collection endpoint
EXFIL
*www.exads.com/_next/data/1WXeTJr04o8zpwDk8ZbsC/en-US/privacy-policy.json*
Data collection endpoint
TRACK
*www.exads.com/_next/static/chunks/pages/blog/%5Bslug%5D-*.js*
Tracking script
TRACK
www.exads.com/_next/static/chunks/webpack-c21fd345984bfc83.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/framework-0c7baedefba6b077.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/main-63a9dd4a3fbd1709.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/pages/_app-4fde2b18abf532c8.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/610-48a651ab91efab1a.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/336-2e8157f6e8c93429.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/pages/%5B%5B...slug%5D%5D-f962a5cc17e502a3.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/1WXeTJr04o8zpwDk8ZbsC/_buildManifest.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/1WXeTJr04o8zpwDk8ZbsC/_ssgManifest.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/pages/blog-908c98774ce75534.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/pages/blog/tag/%5Bslug%5D-202a09ddf762c288.js
Auto-extracted from scan
TRACK
www.exads.com/_next/static/chunks/pages/blog/%5Bslug%5D-e00e09aaca1c01de.js
Auto-extracted from scan
Ecosystem
Ecosystem & Supply Chain
Programmatic advertising stack. Often integrated with SSPs, DMPs, ad exchanges. Fingerprinting enables cross-site tracking; RTB creates widespread data sharing.
Loads (1)
Evidence
Evidence Artifacts
Artifacts collected during analysis, available with evidence-tier access.
HAR Capture
Complete network capture with all requests and responses
IOC Manifest
84 detection signatures across scripts, domains, cookies, and network endpoints