Hackers take control over 300 000 Spotify accounts using login credentials database
According to a VPNMentor security report, a database exposed on the Internet contained 300 million username and password combos that were used in credential stuffing attacks against Spotify.
Database records contain a login name or email address, a password, and whether the credentials could successfully login to Spotify.
Those records are likely to be collected through various data breaches.
Spotify has initiated a password reset for all affected users.
Read more...