Before you even obtain and run their webapp, nationalreview.com attempts to run at least the following spyware: Alphabet, Instiengage, LiveIntent, Olytics, Sailthru, and Scorecard. With that much thrown against you, chances of something sliping through are high and defence is almost impossible.
As for the specific technique, it may be everything: starting from what has been mentioned above (fingerprinting based on address, browser characteristics), through biometrics and behavioral patterns (like lacking or having insufficient prior tracking history, activity hours), finishing at hiding tracking information in various places (service workers, local storage, browse history, IndexedDB).
It may as well be a false positive and you are simply unlucky to be in a minority that has fallen into a wrong bin.
I’m giving an “everything” answer, because — even if I wished to donate my time to analyzing all these programs — they may differ by geographical location, prior tracking history, or time of delivery. So, after huge effort spent on analysis, I may find nothing or my findings would be useless to you.