Security News Spotify Free is Serving Up Malware

[Jack]

Numerous users are flooding music streaming service Spotify’s Twitter feed, reporting that the freemium tier service has been hit with a malvertising attack.

Those running Spotify Free on the desktop are periodically seeing strange browser behavior, with malicious ads serve malware popping up unbidden.

As a post on the Spotify user forum explains:

“If you have Spotify Free open, it will launch—and keep on launching—the default internet browser on the computer to different kinds of malware/virus sites. Some of them do not even require user action to be able to cause harm.

I have 3 different systems (computers) which are all clean and they are all doing this, all via Spotify—I am thinking it's the Ads in Spotify Free. I hope this has been noticed and Spotify staff are fixing it—fast. But it's still puzzling something like this can actually happen.”

The Twitterati were quick to complain:

“Had a malware on my ubuntu desktop that kept opening random ads on my browser every minute. Luckily @Spotify client was easy to uninstall,” said @SamuNuutamo.

Users on Windows 10, Ubuntu and MacOS have all reported the issue.

@tarukalvi tweeted the customer service handle: “@SpotifyCares Yesterday the Spotify Free software started launching malware on my Mac's Safari on its own. Many have the same experience atm.”

For its part, Spotify responded in the user forum, saying that it has placed the issue under investigation.

Read more: http://www.infosecurity-magazine.com/news/spotify-free-is-serving-up-malware/

 

[CMLew]

Voted NO.

I'm Spotify Premium user but I don't use the desktop based. Instead I go for the Spotify Webplayer in Sandboxed Browser.

On a side note, seems Spotify also able to detect the presence of ad-blocker apps. And hence advise us to disable it in order to enjoy full experience

 

[Sseneb]

Weird, I used it not so long ago and never experienced this behaviour. As @CMLew said, if Spotify is able to detect the presence of ad-blocker apps then maybe Ublock Origin is the reason I'm not experiencing it ! Anyways cool share, I will pay more attention when using Spotify Free.

 

[_CyberGhosT_]

What is Spotify ?
Never mind I see it a streaming service for music
Another one I am glad I don't frequent.
The first sign of a site asking me to disable any part of my config and i
head the other way

 

[frogboy]

I am in the lucky group never used Yahoo or Spotify and never as @_CyberGhosT_ says never disable my adblocker.

 

[Cohen]

I used to have Spotify Family until I found out about Google Play Music and the features it provides its users such as uploading music from your device to your Google Play Music account and syncing to all of your devices. After hearing this, I'm even happier I changed from Spotify.

 

[Andrew999]

I am using Spotify Free but I haven't opened it within about 2-3 days, so I guess I better not open it up then yet. I hope it is fine if I don't open it.

 

[Nikos751]

Thanks for reporting this here in MT. I wonder how the browser opens without interaction (if this is the case) in every OS and visits malicious links. Is it an exploit? It's rare for an exploit to be cross plarform.

 

[omidomi]

No paid No free

 

[Ink]

Thanks for reporting this here in MT. I wonder how the browser opens without interaction (if this is the case) in every OS and visits malicious links. Is it an exploit? It's rare for an exploit to be cross plarform.

Here are some methods @cruelsister
https://malwaretips.com/threads/malvertising-strikes-even-when-you-don’t-click.63776/

 

[Nikos751]

Here are some methods @cruelsister
https://malwaretips.com/threads/malvertising-strikes-even-when-you-don’t-click.63776/

Thanks! I 've actually read this. I was specifically impressed to see that this exploit works also on Macs and Ubuntu based systems. Would EMET or MBAE block the launch of the browser (Windows)?

 

[askmark]

Wow the lengths some companies will go to get you to buy their premium service.

 

[cruelsister]

The real problem here is NOT with Spotify but instead with the third party Ad network that they utilize- by that I mean that ANY other website that employs this Ad Network will carry a similar risk. This is not Script Kiddie stuff, but instead is being initiated by criminal gangs that are counting on the laziness and/or competence of the folks employed at the ad networks. And they are not disappointed.

Also the malware that is being served up tends to the nasty. I've noticed an increase in Botnets being distributed and these (especially if they work by hollowing svchost) are difficult to detect.

 

[LASER_oneXM]

I'm using "SPOTIFY Premium" and i have a desktop application on all my PCs/laptops....

 

[askmark]

Also the malware that is being served up tends to the nasty. I've noticed an increase in Botnets being distributed and these (especially if they work by hollowing svchost) are difficult to detect.

What security would you recommend to protect against these kinds of attacks. Is browser sandboxing enough?

 

[Ink]

Spotify is one of the best free music streaming services. I have it installed on desktop but I mostly use the Android version or Google Play Music - both of which are Free and can alternatively be streamed from their Web-based site.

 

[soccer97]

I am guessing it is probably unwise to use Spotify Premium on Android for a week or so to be safe?

 

[Nikos751]

I am guessing it is probably unwise to use Spotify Premium on Android for a week or so to be safe?

Spotify Premium is ad free. Also, Android is a much more robust platform compared to Windows and it's very rare to get malware without user interaction just by opening a trusted app or a random webpage.

 

[soccer97]

Spotify Premium is ad free. Also, Android is a much more robust platform compared to Windows and it's very rare to get malware without user interaction just by opening a trusted app or a random webpage.

Thank you. You do have a good point. JS and Flash exploits tend to be happening more frequently now in tandem with each other.

 

[Malware Man]

I am a Spotify Premium user so I haven't ran into this issue. I used to use the free version for months and months and when I started working I decided to purchase a year of Premium all at once. Whenever my subscription expires next year I will be looking to other services to see what else is out there. I've heard great things about Apple Music and Google Play Music. I'm leaning more towards Apple Music since I have an iPhone and iPad and it just will integrate more.