Strossle | Vendor Intelligence

How This Briefing Works

This report opens with key findings, then maps the gaps between what Strossle discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.

Key Findings

38 detections across 37 sites11% pre-consent activity

MEDIUM

Pre-Consent Activity

Strossle was observed loading and executing before user consent was obtained on 11% of sites where it was detected.

GDPRePrivacy

Disclosure Gaps

Claims vs. Observed Behavior

1 gaps

disclosure

CRITICAL

They Claim

“Pending claims extraction”

Observed Behavior

Runtime detection shows C06 (behavioral biometrics), C08 (cross-domain sync), C09 (consent bypass), C15 (tag manager)

Customer Impact

What This Means For You

Publishers using Strossle face behavioral fingerprinting liability from content widget interactions. Cross-domain sync creates persistent audience profiles sold to advertisers. Tag manager infrastructure enables Strossle to add tracking partners without publisher consent or awareness.

Recommended Actions

What To Do About It

Role-specific actions based on observed behavior

If You Use Strossle

→Audit Strossle tag manager for unauthorized third-party tracking additions
→Implement consent-gated initialization for content recommendation widgets
→Review audience data sales policies and advertiser access restrictions

If You're Evaluating Strossle

→Document behavioral biometric collection scope and retention
→Request written confirmation that audience profiles are not sold to direct competitors
→Obtain technical controls to disable cross-domain sync per-visitor

Negotiation Leverage

→Pre-consent tracking: Tag manager deployment activates before consent — require technical mechanism to defer initialization.
→Behavioral fingerprints: Content interaction patterns create persistent profiles — demand data deletion rights and opt-out verification.
→Cross-publisher profiling: Engagement data linked across publisher network — negotiate restrictions on audience data sales to competitors.
→Tag manager control: Dynamic partner additions bypass publisher oversight — require approval workflow for all third-party additions.

Runtime Detections

4 BTI-C CODES

BLACKOUT observed this vendor's JavaScript executing in a live browser and classified each hostile behavior using our BTI-C (Behavioral Threat Intelligence — Capability) taxonomy. These are not theoretical risks — each code below was triggered by something we watched this vendor's code actually do.

BTI-C06Behavioral Biometrics

Keystroke/mouse tracking

BTI-C08Cross-Domain Sync

Identity stitching

BTI-C09Consent Bypass

Ignoring CMP signals

BTI-C15Tag Manager

Container/loader (neutral)

IOC Manifest

66 INDICATORS

Indicators of compromise across 4 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.

TRACK

*www.strossle.com/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js*

Tracking script

TRACK

*www.strossle.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js*

Tracking script

TRACK

*www.strossle.com/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js*

Tracking script

TRACK

*www.strossle.com/hs/hsstatic/content-cwv-embed/static-1.*/embed.js*

Tracking script

TRACK

*www.strossle.com/hubfs/hub_generated/template_assets/1/*/*/template_Strossle_January*-main.js*

Tracking script

TRACK

*www.strossle.com/hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js*

Tracking script

TRACK

*www.strossle.com/hubfs/hub_generated/module_assets/1/*/*/module_Home_Banner_Area_-_Strossle_January*.js*

Tracking script

TRACK

*www.strossle.com/hubfs/hub_generated/module_assets/1/*/*/module_Banner_Area_-_Strossle_January*.js*

Tracking script

TRACK

*www.strossle.com/hubfs/hub_generated/module_assets/1/*/*/module_Prefooter_Pop_Up_-_Strossle_January*.js*

Tracking script

TRACK

*www.strossle.com/_hcms/forms/v2.js*

Tracking script

TRACK

*www.strossle.com/hs/scriptloader/*.js*

Tracking script

TRACK

www.strossle.com/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js

Auto-extracted from scan

TRACK

www.strossle.com/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js

Auto-extracted from scan

TRACK

www.strossle.com/hubfs/hub_generated/template_assets/1/25072747630/1742864360472/template_Strossle_January2020-main.min.js

Auto-extracted from scan

TRACK

www.strossle.com/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js

Auto-extracted from scan

TRACK

www.strossle.com/hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js

Auto-extracted from scan

TRACK

www.strossle.com/hubfs/hub_generated/module_assets/1/25274211159/1742971518608/module_Home_Banner_Area_-_Strossle_January2020.min.js

Auto-extracted from scan

TRACK

www.strossle.com/hubfs/hub_generated/module_assets/1/25081260144/1742971512829/module_Banner_Area_-_Strossle_January2020.min.js

Auto-extracted from scan

TRACK

www.strossle.com/_hcms/forms/v2.js

Auto-extracted from scan

TRACK

www.strossle.com/hubfs/hub_generated/module_assets/1/25081193414/1742971511876/module_Prefooter_Pop_Up_-_Strossle_January2020.min.js

Auto-extracted from scan

TRACK

www.strossle.com/hs/scriptloader/4250797.js

Auto-extracted from scan

TRACK

www.strossle.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js

Auto-extracted from scan

Ecosystem

Ecosystem & Supply Chain

Strossle appears in content recommendation contexts alongside Taboola, Outbrain, Revcontent, and programmatic ad networks. Publishers deploy via tag managers (GTM, Tealium) that enable pre-consent activation.

Loads (1)

Hubspot

Evidence

Evidence Artifacts

Artifacts collected during analysis, available with evidence-tier access.

HAR Capture

Complete network capture with all requests and responses

IOC Manifest

90 detection signatures across scripts, domains, cookies, and network endpoints