How This Briefing Works
This report opens with key findings, then maps the gaps between what Meredith discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.
Key Findings
Analysis pending. Findings will appear here once intelligence collection is complete.
Claims vs. Observed Behavior
Pending Analysis
“Claims extraction pending”
CDT analysis urgently needed — advertising vendors are highest-risk category
What This Means For You
What To Do About It
Role-specific actions based on observed behavior
If You Use Meredith
- →monitor for scanner detections
- →audit ad tag deployment and consent gating
If You're Evaluating Meredith
- →priority recon investigation — advertising vendors are highest-risk category for behavioral threats
Negotiation Leverage
- →Baseline detection only — behavioral analysis urgently needed for ad vendors
- →Advertising networks are highest-risk category for cross-domain sync and consent violations
- →Demand complete pixel and cookie documentation before deployment
IOC Manifest
Indicators of compromise across 2 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.
No indicators in this category
Ecosystem & Supply Chain
Evidence Artifacts
Artifacts collected during analysis, available with evidence-tier access.
Complete network capture with all requests and responses
6 detection signatures across scripts, domains, cookies, and network endpoints