For the third time during 2020, Spotify has experienced a data breach, admitting that their information was exposed to some third-party business partners. In a breach notice letter with date Dec. 9, 2020, Spotify explained how its network was compromised and how the vulnerability on its systems existed since April 9,2020.
While there’s no reason to believe that any unauthorized use of customer information took place, Spotify advised its customers who received the letter to change the passwords of all other online accounts that they use the identical email address and password.
To remedy the difficulty, Spotify implemented what’s referred to as a password “rolling reset” for accounts that were affected by the hack. Spotify ensures customers that they’re conducting an investigation on how the data breach occurred and also are ensuring that any third-party partners in possession of this data delete it immediately.
“Spotify did not make this information publicly accessible. We estimate that this vulnerability existed as of April 9, 2020.”
Spotify said it has contacted all of those partners to ensure they delete the exposed customer information, and has reset the passwords of affected users.
TIPS FOR YOU
In the era of mobile-first technology, productivity and security go hand in hand. This means that when utilizing digital tools, the fact that your data remains secure, encrypted, and in the right hands is just as important – if not more so – than the increase in productivity obtained by using them.
To protect the sensitive data stored in your accounts, you can start by choosing a robust and unique password, or maybe better passphrase. Also, use a password manager; for extra security, activate multi-factor authentication where possible.