All Vendors
intent_data
Lead411

Lead411

Registered data broker running visitor identity resolution via undisclosed third parties before consent is obtained. Claims GDPR compliance while 8 tracking services fire pre-consent.

205 IOCs
90
Vendor Risk Score

How This Briefing Works

This report opens with key findings, then maps the gaps between what Lead411 discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.

Key Findings

Key Findings

2 critical disclosure gaps
CRITICAL

consent

8 third-party tracking services fire pre-consent including GA4, Smartlook, Clarity, PostHog, and expertise.ai visitor resolution with HEM identity matching

GDPR Art 5(3)GDPR Art 6(1)(a)ePrivacy Directive Art 5(3)
CRITICAL

disclosure

8+ distinct third-party services detected on marketing site including undisclosed cookie sync domain a.usbrowserspeed.com and visitor resolution service expertise.ai

GDPR Art 28CCPA 1798.110
HIGH

session_recording

Two separate session replay tools active simultaneously: Smartlook (web-sdk.smartlook.com/recorder.js) and Microsoft Clarity (clarity.ms/tag). Neither named specifically in privacy policy

GDPR Art 13(1)(e)GDPR Art 35
HIGH

identity_resolution

expertise.ai chat widget includes visitor-enrichment module that performs identity resolution via HEM (SHA-256 hashed email) sent to a.usbrowserspeed.com cookie sync, then to api.expertise.ai/visitor-resolution endpoint

GDPR Art 6(1)(a)CCPA 1798.140(ae)
HIGH

Undisclosed Sharing

Hidden data recipients

Disclosure Gaps

Claims vs. Observed Behavior

5 gaps
2 CRIT2 HIGH1 MED
Classified:BTI-X02BTI-X05

disclosure

GDPR Art 28 · CCPA 1798.110CRITICAL
They Claim

No subprocessor list published; privacy policy lists generic categories (service providers, advertising partners)

Observed Behavior

8+ distinct third-party services detected on marketing site including undisclosed cookie sync domain a.usbrowserspeed.com and visitor resolution service expertise.ai

Network request to a.usbrowserspeed.com/cs returns HEM and sets tuid cookie (Max-Age=31536000). POST to api.expertise.ai/visitor-enrichment/visitor-resolution sends platformId, visitorId, and hem_sha256

session_recording

GDPR Art 13(1)(e) · GDPR Art 35HIGH
They Claim

Privacy policy acknowledges session-replay technologies generically

Observed Behavior

Two separate session replay tools active simultaneously: Smartlook (web-sdk.smartlook.com/recorder.js) and Microsoft Clarity (clarity.ms/tag). Neither named specifically in privacy policy

Both Smartlook and Clarity scripts confirmed loading and active via window.smartlook and window.clarity global objects

identity_resolution

GDPR Art 6(1)(a) · CCPA 1798.140(ae)HIGH
They Claim

No disclosure of visitor de-anonymization on marketing site

Observed Behavior

expertise.ai chat widget includes visitor-enrichment module that performs identity resolution via HEM (SHA-256 hashed email) sent to a.usbrowserspeed.com cookie sync, then to api.expertise.ai/visitor-resolution endpoint

POST body to visitor-resolution contains platformId, visitorId, hem_sha256. Response from a.usbrowserspeed.com returns matching HEM and tuid with 1-year cookie

transparency

CCPA 1798.185(a)(20)MEDIUM
They Claim

Privacy policy does not honor Do Not Track signals

Observed Behavior

Explicit statement: We currently do not respond to a Do Not Track signal. At least transparent about this.

Privacy Policy Section 5.5

Customer Impact

What This Means For You

If Lead411 is in your vendor stack, your sales team is buying contact data from a registered data broker that runs undisclosed identity resolution on its own visitors. The same expertise.ai visitor-enrichment pipeline used on lead411.com may be recommended or bundled for Lead411 customers, extending the same pre-consent tracking pattern to your properties. Lead411 data fuels outbound campaigns -- if the underlying data was collected without proper consent, your outreach inherits that compliance risk. Two simultaneous session replay tools recording visitor behavior on a site that sells contact data raises questions about what behavioral data is being correlated with the PII Lead411 already holds.
Recommended Actions

What To Do About It

Role-specific actions based on observed behavior

If You Use Lead411

  • Audit your outbound sequences sourced from Lead411 data for consent chain compliance under GDPR Art 14
  • Request Lead411 DPA and subprocessor list -- if they cannot provide one, that is a material gap for GDPR Art 28 compliance
  • Verify Lead411 data sources are disclosed in your own privacy policy if you use their data for outreach
  • Check if Lead411 Chrome Extension is deployed by your team and what data it captures

If You're Evaluating Lead411

  • Request Lead411 documentation of consent basis for contact data collection before signing
  • Ask specifically about expertise.ai and a.usbrowserspeed.com integrations and whether customer data flows through these services
  • Compare Lead411 CCPA metrics page disclosure rates against your compliance requirements
  • Benchmark against competitors (ZoomInfo, Apollo) on subprocessor transparency

Negotiation Leverage

  • Lead411 is a registered data broker in California (#185769) and Texas -- ask them to confirm all state registrations are current and whether they registered in Vermont and Oregon as required
  • Their privacy policy admits to selling consumer data to customers but publishes no subprocessor list -- request one as a condition of any agreement
  • Investigation found 8+ third-party services on lead411.com firing before Cookiebot consent, contradicting their GDPR compliance claims -- use this as leverage for a robust DPA
  • The undisclosed expertise.ai visitor-resolution pipeline with a.usbrowserspeed.com cookie sync is not mentioned in their privacy policy -- ask them to explain this data flow before signing
  • They run two simultaneous session replay tools (Smartlook + Clarity) on a site that sells PII -- request confirmation this behavioral data is not correlated with contact records
Runtime Detections

Runtime Detections

8 BTI-C CODES

BLACKOUT observed this vendor's JavaScript executing in a live browser and classified each hostile behavior using our BTI-C (Behavioral Threat Intelligence — Capability) taxonomy. These are not theoretical risks — each code below was triggered by something we watched this vendor's code actually do.

BTI-C01Defeat Device

Evasion infrastructure, auditor bypass

BTI-C06Behavioral Biometrics

Keystroke/mouse tracking

BTI-C07Session Recording

Full session replay

BTI-C08Cross-Domain Sync

Identity stitching

BTI-C09Consent Bypass

Ignoring CMP signals

BTI-C10Fingerprinting

Device identification

BTI-C13Persistence Mechanisms

Long-lived identifiers

BTI-C15Tag Manager

Container/loader (neutral)

IOC Manifest

IOC Manifest

205 INDICATORS

Indicators of compromise across 4 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.

TRACK
*www.lead411.com/wp-includes/js/utils.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/divi-modules-table-maker/extensions/scripts/module-script-min.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/assets/libs/magnific/magnific-popup.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/jquery/jquery-migrate.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/dist/frontend.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/assets/libs/slick/slick.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/adirectory/assets/frontend/js/global.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/jquery/jquery.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/dist/hooks.js*
Tracking script
TRACK
*www.lead411.com/wp-admin/js/editor.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/quicktags.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/hoverIntent.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/dist/dom-ready.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/dist/i18n.js*
Tracking script
TRACK
*www.lead411.com/wp-admin/js/common.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/dist/a11y.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/wplink.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/jquery/ui/core.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/jquery/ui/menu.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/jquery/ui/autocomplete.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/thickbox/thickbox.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/underscore.js*
Tracking script
TRACK
*www.lead411.com/wp-admin/js/media-upload.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/shortcode.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/adirectory/assets/frontend/js/grid-page-script.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/adirectory/assets/admin/js/leaflet-cluster.js*
Tracking script
TRACK
*www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/adirectory/assets/admin/js/leaflet.js*
Tracking script
TRACK
*www.lead411.com/wp-content/themes/Divi/js/scripts.js*
Tracking script
TRACK
*www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js*
Tracking script
TRACK
*www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/divi-modules-table-maker/extensions/divi-4/scripts/frontend-bundle.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/divi-plus/scripts/frontend-bundle.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/ad-divi-extensions/scripts/frontend-bundle.js*
Tracking script
TRACK
*www.lead411.com/wp-content/themes/Divi/core/admin/js/common.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/divi-plus/includes/assets/js/swiper/swiper.js*
Tracking script
TRACK
*www.lead411.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/mediaelement/mediaelement-and-player.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/tinymce/plugins/compat3x/plugin.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/tinymce/tinymce.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/mediaelement/mediaelement-migrate.js*
Tracking script
TRACK
*www.lead411.com/wp-includes/js/mediaelement/wp-mediaelement.js*
Tracking script
TRACK
*www.lead411.com/cdn-cgi/challenge-platform/scripts/jsd/main.js*
Tracking script
TRACK
*www.lead411.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/*/main.js*
Tracking script
TRACK
www.lead411.com/wp-includes/js/utils.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/divi-modules-table-maker/extensions/scripts/module-script-min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/jquery/jquery.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/jquery/jquery-migrate.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/assets/libs/slick/slick.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/assets/libs/magnific/magnific-popup.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/wow-carousel-for-divi-lite/dist/frontend.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/adirectory/assets/frontend/js/global.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-admin/js/editor.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/quicktags.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/hoverIntent.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/dist/dom-ready.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/dist/hooks.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/dist/i18n.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/dist/a11y.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-admin/js/common.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/wplink.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/jquery/ui/core.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/jquery/ui/menu.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/jquery/ui/autocomplete.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/thickbox/thickbox.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/underscore.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/shortcode.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-admin/js/media-upload.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/adirectory/assets/admin/js/leaflet.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/adirectory/assets/admin/js/leaflet-cluster.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/adirectory/assets/frontend/js/grid-page-script.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/themes/Divi/js/scripts.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/divi-modules-table-maker/extensions/divi-4/scripts/frontend-bundle.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/divi-plus/scripts/frontend-bundle.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/ad-divi-extensions/scripts/frontend-bundle.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/themes/Divi/core/admin/js/common.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-content/plugins/divi-plus/includes/assets/js/swiper/swiper.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/mediaelement/wp-mediaelement.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/tinymce/tinymce.min.js
Auto-extracted from scan
TRACK
www.lead411.com/wp-includes/js/tinymce/plugins/compat3x/plugin.min.js
Auto-extracted from scan
TRACK
www.lead411.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
Auto-extracted from scan
TRACK
www.lead411.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/ea2d291c0fdc/main.js
Auto-extracted from scan
Ecosystem

Ecosystem & Supply Chain

Lead411 operates within the B2B intent data ecosystem alongside ZoomInfo, Apollo.io, Seamless.AI, and Lusha. The platform integrates Bombora intent data for buyer intent signals and partners with Salesforce, HubSpot, and Outreach.io for CRM connectivity. On its own marketing site, Lead411 deploys a stack that includes Google Tag Manager loading GA4, Smartlook and Microsoft Clarity for session replay, PostHog for product analytics, and expertise.ai (ChatSimple) as an AI chat widget with built-in visitor de-anonymization. The expertise.ai integration connects to a.usbrowserspeed.com for cross-origin cookie synchronization, creating an identity resolution pipeline that operates independently of the Cookiebot CMP.
Evidence

Evidence Artifacts

Artifacts collected during analysis, available with evidence-tier access.

HAR Capture

Complete network capture with all requests and responses

IOC Manifest

205 detection signatures across scripts, domains, cookies, and network endpoints

Vendor Details