• "Hundreds" of hacked Spotify account credentials leaked
    18 replies, posted
[quote="TechCrunch"]A list containing hundreds of Spotify account credentials – including emails, usernames, passwords, account type and other details – has popped up on the website Pastebin, in what appears to be a possible security breach. After reaching out to a random sampling of the victims via email, we’ve confirmed that these users’ Spotify accounts were compromised only days ago. However, Spotify says that it “has not been hacked” and its “user records are secure.” So far, over a half-dozen have responded, confirming that they did experience a Spotify account breach recently. They became aware of the breach in a number of ways – for example, one said he found songs added to his saved songs list that he hadn’t added.[/quote] Source: [url]http://techcrunch.com/2016/04/25/hundreds-of-spotify-credentials-appear-online-users-report-accounts-hacked-emails-changed/[/url] Dunno if this is related to the Spotify leak a year or so ago but this quote from the article makes it seem like it is a newer incident. [quote]"I suspected my account had been hacked last week as I saw ‘recently played’ songs that I’d never listened to, so I changed my password and logged out of all devices”[/quote]
Well I'm not affect. Most likely some people got phished. As for emails hacked use 2 factor auth; always if it's provided. [url]https://haveibeenpwned.com/[/url]
I could find a pastebin source (from 23rd of April) for that but I'm not sure if that is even legit. Has 228 accounts, all gmail.com emails. Looks an awful lot like phishing and not an actual leak. Edit: Also testing a few of those entries didn't work either. They say they monitor pastebin, so it is possible that they force reset those passwords.
[QUOTE=Aide;50202975]Well I'm not affect. Most likely some people got phished. As for emails hacked use 2 factor auth; always if it's provided. [url]https://haveibeenpwned.com/[/url][/QUOTE] I check that website like 4 times a year. If something comes up of mine, I either change everything or contact support to close the account since its likely some old profile I had 10 years ago.
I noticed about a month ago that somebody had been logging in to my account and adding playlists, but I'm logged into about 6 different devices and occasionally share it with family. In this case, none of those devices (or people) were the ones adding the playlists. I deleted them and logged out on all devices (Spotify panel does not show where you are logged in, just logs out all sessions), and intentionally did not reset the password to see if it had been breached. A few days later some more playlists appeared. Changed password and logged off all sessions again; no issues since. I know that I was not a victim to phishing. This could easily be more of a breach than they are letting on.
I had this happen to me, my songs kept randomly changing in my car and would play from 'Joshua's iPhone' as opposed to mine. If your out there josh you have an awful taste in music
Why would people log on spotify accounts if its free (and ad free if you use ad block)?
[QUOTE=Hanso;50203899]Why would people log on spotify accounts if its free (and ad free if you use ad block)?[/QUOTE] Some people, like me, pay for spotify.
[QUOTE=Hanso;50203899]Why would people log on spotify accounts if its free (and ad free if you use ad block)?[/QUOTE] Higher quality and mobile
[QUOTE=Hanso;50203899]Why would people log on spotify accounts if its free (and ad free if you use ad block)?[/QUOTE]I stopped using spotify but free spotify has shit quality. Premium spotify has decent quality.
Why the hell would someone just start using a hijacked account as their own, without changing the password no less?
[QUOTE=Talishmar;50204057]Why the hell would someone just start using a hijacked account as their own, without changing the password no less?[/QUOTE] because then they'd have to pay for premium
[QUOTE=Talishmar;50204057]Why the hell would someone just start using a hijacked account as their own, without changing the password no less?[/QUOTE] If you change the password, the user can recover it If the user doesn't know, you're never gonna be caught.
[QUOTE=Talishmar;50204057]Why the hell would someone just start using a hijacked account as their own, without changing the password no less?[/QUOTE] someone I know here had their uber account compromised in by someone in china hijacker didn't change the password or anything, might be related to what DudeGuy suggested but last I heard (while ago) he hasn't done anything to secure the account because they were improving their rating :v:
[QUOTE=Code3Response;50203138]I check that website like 4 times a year. If something comes up of mine, I either change everything or contact support to close the account since its likely some old profile I had 10 years ago.[/QUOTE] For me it says [I]Oh no — pwned! Pwned on 1 breached site and found no pastes (subscribe to search sensitive breaches)[/I] what do? [editline]26th April 2016[/editline] Wait.. I was "pwned" in HoN? I sucked ass in HoN. Heroes of Newerth: In December 2012, the multiplayer online battle arena game known as Heroes of Newerth was hacked and over 8 million accounts extracted from the system. The compromised data included usernames, email addresses and passwords. So basically nothing to worry about, lol. Damn that's a nice site.
Spotify ones doesn't seem to be on the [url]https://haveibeenpwned.com/[/url] site yet so checking it for it is pointless.
[QUOTE=Aide;50202975]Well I'm not affect. Most likely some people got phished. As for emails hacked use 2 factor auth; always if it's provided. [url]https://haveibeenpwned.com/[/url][/QUOTE] Oh wow, thanks for that.
[QUOTE=Combine 177;50205461]Spotify ones doesn't seem to be on the [url]https://haveibeenpwned.com/[/url] site yet so checking it for it is pointless.[/QUOTE] Wow, found out someone had made a gamigo.com account in 2011 under my email for whatever reason. haha fags it's mine now time to play GOODGAME BIG FARM
Sorry, you need to Log In to post a reply to this thread.