You do need to create an app-password if you want to use Spotify on legacy devices that don’t support the Facebook API for logging in.
This means you don’t have to use the regular username/password methods for logging into any of Spotify’s official apps. It stores the following data about you: your e-mail address, your date of birth, your country and it creates a unique ID for legacy devices. It utilizes OAuth to get some information about you and then either signs you up or logs you in. You can sign up on Spotify using your Facebook account. So I started researching what happened and narrowed down potential holes to the absolute minimum possible. I was one of the affected people in there and I had seen my account getting hijacked in front of me while listening to music on Spotify. Instead, a spokesperson blamed credential stuffing attacks.As you might have read on sites like Reddit a list of Spotify emails and passwords were posted online in a Pastebin. “ monitoring any possible account security issues of which we’re made aware and continue to have no indication of a breach of private data of our customers.”įollowing a similar hack late last year, a DoorDash spokesperson denied a data breach had occurred. The forced resets come months after major companies reported similar breaches.ĭenying the company was hacked last month, Chipotle spokesperson Laurie Schalow said, Also, my hijacker shared a similar taste in music to yours! Spotify denied that they had any database breaches, but I only use that password for Spotify, so I find that highly unlikely.”
“ Same thing happened to me, right around the same time. Stating the service denied any database breaches, another user explained, I wouldn’t mind sharing, but man, his taste in music was awful.” “My Spotify account was hijacked in 2017 and managed to get it back – someone from Tunisia – he had the audacity to start creating playlists full of autotune rappers. I went in and really changed it into a massive 50 character pw. Speaking about experiencing the same problem two years ago, one user wrote on HackerNews, Others, however, used passwords unique to Spotify. Multiple users admitted to using the same password across different websites.
0 kommentar(er)
