Thursday, January 21, 2021
News

Spotify users targeted in potential fraud scheme: Report

   SocialTwist Tell-a-Friend    Print this Page   COMMENT

San Francisco | Wednesday, 2020 2:45:06 AM IST
Music streaming service Spotify has launched a rolling password reset of some consumer accounts after an open database containing credentials of some users were uncovered, said a report.

VPN review website vpnMentor on Monday said that its research team led by Noam Rotem and Ran Locar, discovered a possible credential stuffing operation whose origins are unknown, but that affected some online users who also have Spotify accounts.

Credential stuffing is a hacking technique that takes advantage of weak passwords that consumers use -- and often re-use -- online.

"We unearthed an Elasticsearch database containing over 380 million records, including login credentials and other user data being validated against the Spotify service," vpnMentor said in a blog post.

"The origins of the database and how the fraudsters were targeting Spotify are both unknown. The hackers were possibly using login credentials stolen from another platform, app, or website and using them to access Spotify accounts," it added.

"These credentials were most likely obtained illegally or potentially leaked from other sources that were repurposed for credential stuffing attacks against Spotify," Rotem and Locar said.

It is estimated that roughly 300,000 to 350,000 accounts were affected in the leak in which email addresses and login credentials - usernames and passwords - were exposed.

The leaked data only relates to a tiny fraction of Spotify's 299 million active monthly user base, ZDNet reported on Tuesday.

vpnMentor unearthed the database on July 3. After a review of the database, it contacted Spotify on July 9.

Between July 10 and July 21, Spotify launched a rolling reset of passwords for the users identified in the database in order to make sure the password and username combinations would become useless, at least on the Spotify platform, said the report.

--IANS gb/bg

( 301 Words)

2020-11-24-20:44:02 (IANS)

 
  LATEST COMMENTS (0)
POST YOUR COMMENT
Comments Not Available
 
POST YOUR COMMENT
 
 
TRENDING TOPICS
 
 
CITY NEWS
MORE CITIES
 
 
 
MORE SCIENCE NEWS
Alibaba stock up 8% after Jack Ma reappe...
YouTube extends suspension of Trump's ch...
Indian photographer featured in Apple's ...
Citrix to acquire work management platfo...
Cognizant to acquire US-based software f...
Netflix surpasses 200mn paid subscribers...
More...
 
INDIA WORLD ASIA
Protests by farmers mar public hearing f...
Man held in Bhopal under new religious c...
Nitish Kumar's cabinet expansion expecte...
Why did Naidu block Bharat Ratna to NTR,...
TDP workers removed Nandi idol from temp...
Prominent J&K religious leaders call for...
More...    
 
 Top Stories
Nearly 80% believe India's actions ... 
WhatsApp investment tips' land two ... 
Kamala Devi Harris sworn in as Vice... 
IPL's top wicket-taker Malinga quit... 
Two-third Indians acknowledge Dalai... 
Biden starts off inauguration day w... 
Govt makes big offer to bring farme... 
62% Indians support idea of conferr...