this post was submitted on 23 Feb 2024
21 points (88.9% liked)

/c/cybersecurity - Cybersecurity News & Discussion

2348 readers
1 users here now

A community for technical news and discussion of cybersecurity and closely related topics.

founded 4 years ago
MODERATORS
[email protected]
21
Was there a recent hack/leak affecting Spotify? (lemmy.ml)
submitted 1 year ago by [email protected] to c/[email protected]
4 comments fedilink hide all child comments
 

So, yeah. Other than stated, Spotify does not provide 2FA (shame on them!), so I use a strong password and since years nothing happened.

This early morning I got multiple mails that my account was logged in from Brazil, from the USA, from India, and some other countries. There were songs liked and playlists created so it wasn’t a malicious e-mail but some people actually were able to log on to my Spotify account.

I of course changed the password and logged out all accounts and checked allowed apps, etc. and everything looks fine.

But I wonder … was there something that happened recently? The common sites to check such things do not list my old Spotify password, and a quick web research does not bring anything up.

Any clue what could have happened here?

all 5 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 1 year ago (1 children)

Is that account showing in haveibeenpwnd.com and if so, is the Spotify password the same as any of the sites showing in haveibeenpwnd

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

The mail address is shown for 3 data breaches. dailymotion 2016, Gravatar 2020, Myspace 2008. None of the passwords could possible match my Spotify password but I stopped using those services long before the breaches so I can’t tell 100%.

[–] [email protected] 1 points 1 year ago

Regardless of what corporation it is. Always assume they got hacked.

Unless of course all their users' data is end to end encrypted, all with unique keys.

if a company like that gets hacked then it's like an intruder in an apartment complex, you got through the first door, now you need to break into each account one at a time.