• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Spotify Resets Passwords After Leaking User Data to Partners

You are here: Home / General Cyber Security News / Spotify Resets Passwords After Leaking User Data to Partners

Spotify has been forced to issue a password reset for users right after admitting that their details was uncovered to some of the firm’s 3rd-party business companions.

The tunes streaming big mentioned in a purchaser facts breach notification sent to the California attorney typical that the privacy snafu was only found and set right after seven months.

“On Thursday November 12, Spotify identified a vulnerability in our system that inadvertently exposed your Spotify account registration information and facts, which may possibly have involved email tackle, your most popular display screen name, password, gender, and date of delivery only to sure small business companions of Spotify,” it explained.

✔ Approved Seller by TheCyberSecurity.News From Our Partners
Avast Ultimate Suite 2021

Protect yourself against all threads using AVAST Ultimate Suite. AVAST Ultimate Suite protects your Windows, macOS and your Android via Avast Premium. In addition it comes with AVAST's well-known VPN service SecureLineVPN. Therefore, it will be a security and privacy in one package.

Get AVAST Ultimate Suite with 65% discount certified seller: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


“Spotify did not make this data publicly obtainable. We estimate that this vulnerability existed as of April 9, 2020 until finally we learned it on November 12, 2020, when we took fast actions to right it.”

Spotify mentioned it has contacted all of people companions to be certain they delete the exposed customer facts, and has reset the passwords of affected users.

“We have no explanation to believe that any unauthorized use of your data has or will manifest, having said that, we urge you to modify the passwords of all other on-line accounts for which you use the similar email address and password,” it added.

This is the third security incident affecting the firm in latest months. A handful of times in the past a hacktivist calling on their own ‘Daniel’ hijacked the Spotify for Artists website page, posting messages in aid of Taylor Swift and Donald Trump.

A several times before that, in late November, security researchers found a leaky cloud database made up of logins for up to 350,000 Spotify end users probably to have been portion of a credential stuffing marketing campaign.

Laurence Pitt, technological security guide at Juniper Networks, urged internet buyers to use a password supervisor to support them retail store powerful, distinctive credentials for each individual on line account.

“Many people pay for premium Spotify services and with entry to a password, anybody would be in a position to redirect a subscription for their own use,” he included.

“Password re-use is hazardous for the reason that if any of the info from this publicity does fall into the mistaken fingers, then it will finish up in brute-pressure attack databases giving legitimate username/password mixtures for entry to other solutions.”


Some elements of this posting are sourced from:
www.infosecurity-magazine.com

Previous Post: «Wormable Gitpaste 12 Botnet Returns To Target Linux Servers, Iot Devices Wormable Gitpaste-12 Botnet Returns to Target Linux Servers, IoT Devices
Next Post: New Python-based malware steals Outlook files and browser credentials New Python Based Malware Steals Outlook Files And Browser Credentials»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Recent Posts

  • Big Tech Bans Social Networking App
  • Lack of Funding Could Lead to “Lost Generation” of Cyber-Startups
  • Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor
  • ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform
  • DarkSide decryptor unlocks systems without ransom payment – for now
  • Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group
  • Millions of Social Profiles Leaked by Chinese Data-Scrapers
  • Feds will weigh whether cyber best practices were followed when assessing HIPAA fines
  • SolarWinds Hack Potentially Linked to Turla APT
  • 10 quick tips to identifying phishing emails

Copyright © TheCyberSecurity.News, All Rights Reserved.