All Vendors
data_enrichment

Pubrio

Pubrio exhibits broker control through undisclosed enrichment pipelines and consent bypass via pre-interaction data synchronization. Marketed as audience intelligence but operates as identity stitching infrastructure.

98 IOCs163 detections6% pre-consent155 sites
70
Vendor Risk Score

How This Briefing Works

This report opens with key findings, then maps the gaps between what Pubrio discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.

Key Findings

Key Findings

163 detections across 155 sites6% pre-consent activity
MEDIUM

Pre-Consent Activity

Pubrio was observed loading and executing before user consent was obtained on 6% of sites where it was detected.

GDPRePrivacy
Disclosure Gaps

Claims vs. Observed Behavior

1 gaps

enrichment_timing

HIGH
They Claim

Pending claims extraction

Observed Behavior

Runtime shows immediate third-party data synchronization before consent

Customer Impact

What This Means For You

Marketing teams gain richer visitor profiles but expose organization to broker dependency (competitors receive same enrichment). Legal teams face consent timing violations. RevOps teams inherit measurement distortion from enriched false positives.
Recommended Actions

What To Do About It

Role-specific actions based on observed behavior

If You Use Pubrio

  • Audit enrichment API calls against consent framework timing
  • Map data flow to external enrichment sources
  • Verify DPA covers third-party enrichment processing

If You're Evaluating Pubrio

  • Require demonstration of consent-gated enrichment activation
  • Request list of all third-party data sources
  • Evaluate first-party enrichment alternatives

Negotiation Leverage

  • C06+C09 combination: Demand DPA provisions prohibiting enrichment before explicit consent
  • Require disclosure of ALL third-party data sources used in visitor enrichment
  • Request exclusivity clause preventing enriched data sharing with competitors
  • Negotiate audit rights covering enrichment timing and source attribution
Runtime Detections

Runtime Detections

2 BTI-C CODES

BLACKOUT observed this vendor's JavaScript executing in a live browser and classified each hostile behavior using our BTI-C (Behavioral Threat Intelligence — Capability) taxonomy. These are not theoretical risks — each code below was triggered by something we watched this vendor's code actually do.

BTI-C06Behavioral Biometrics

Keystroke/mouse tracking

BTI-C09Consent Bypass

Ignoring CMP signals

IOC Manifest

IOC Manifest

84 INDICATORS

Indicators of compromise across 4 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.

TRACK
*pubrio.com/_next/static/chunks/app/%5Blocale%5D/page-*.js*
Tracking script
TRACK
*pubrio.com/_next/static/chunks/*-*.js*
Tracking script
TRACK
*pubrio.com/_next/static/chunks/app/%5Blocale%5D/template-*.js*
Tracking script
TRACK
*pubrio.com/_next/static/chunks/app/%5Blocale%5D/layout-*.js*
Tracking script
TRACK
*pubrio.com/_next/static/chunks/main-app-*.js*
Tracking script
TRACK
*pubrio.com/_next/static/chunks/webpack-*.js*
Tracking script
TRACK
*pubrio.com/g4oo/*
Tracking script
TRACK
pubrio.com/_next/static/chunks/webpack-0f50cca404b61673.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/fd9d1056-ca5b20f90743e138.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/2117-7503fa71f0b2b9f8.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/main-app-f7e7c8251964b28f.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/7945-a91c67045cf9a77b.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/5688-2030e5ed42c9af36.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/4013-f5418fc1020fc8f8.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/6858-1ca9a3deb7aa35e7.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/8824-10537a5afdbdc0b1.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/3464-1aa0c2263d5799a7.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/3145-a5df7e89f010e3fb.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/8002-0ac1bf5761600258.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/6753-00b3d49f499950af.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/9780-caee095649819420.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/app/%5Blocale%5D/page-1673a194358e2782.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/app/%5Blocale%5D/layout-14bac7b3b5b48252.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/7635-ccec1be5b15833f9.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/7704-58a3184ba40247a1.js
Auto-extracted from scan
TRACK
pubrio.com/_next/static/chunks/app/%5Blocale%5D/template-4ffb917d2b3eab4b.js
Auto-extracted from scan
TRACK
pubrio.com/g4oo/
Auto-extracted from scan
Ecosystem

Ecosystem & Supply Chain

Pubrio operates in enrichment layer, typically receiving visitor signals from identification vendors (Clearbit, 6sense) and feeding enriched profiles to marketing automation (Marketo, HubSpot) and ABM platforms. Creates data flow vulnerability when deployed before consent resolution.
Loads (4)
Shopping GoogleLinkedinDoubleclickGoogleanalytics4
Evidence

Evidence Artifacts

Artifacts collected during analysis, available with evidence-tier access.

HAR Capture

Complete network capture with all requests and responses

IOC Manifest

98 detection signatures across scripts, domains, cookies, and network endpoints

Vendor Details