Skip to main content

If you're a free Spotify user, then you might've been exposed to malware

Spotify Premium
Image used with permission by copyright holder
The adage “you get what you pay for” has taken on new meaning lately, with free services and apps that rely on advertising often providing a little something extra to users. Service providers and developers can’t always control what’s injected in their ad streams, and as Spotify recently discovered, some malware might very well go along for the ride.

No matter which platform you use, if you’re a Spotify listener who’s opted for the free version rather than shelling out for a monthly subscription, then you might have been exposed to some malware due to a recent incident. Spotify moved quickly to fix things up, according to Engadget, but whether you’re listening on a Mac, a Windows machine, or a Linux box, there’s a chance that you might have seen an infected ad or two pop up.

Recommended Videos

Spotify admitted the problem in a statement to Engadget, while downplaying the number of affected users affected and promising to keep an eye on things. “A small number of users have experienced a problem with questionable website pop ups in their default browsers as a result of an isolated issue with an ad on our free tier,” Spotify said. “We have now identified the source of the problem and have shut it down. We will continue to monitor the situation.”

Please enable Javascript to view this content

This isn’t the first time that Spotify served up malicious content in its advertising, with a similar incident occurring in 2011. Spotify isn’t alone, as any number of other providers have also been subjected to the spread of malware through advertising, otherwise known as “malvertising.”

The bottom line is this — if you use a free service that’s funded by advertising, then you run the risk of exposure. The safest bet is to make sure that your devices are protected by some kind of antivirus and anti-malware software. You can learn more about some good options in our recent free antivirus roundup, and if you want to avoid ad-based malware in at least one service, then you can always sign up for a paid Spotify subscription at $9.99 a month.

Mark Coppock
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
How Windows 11 scrapes your data before you’re even connected to the internet
windows 10 pro default product key privacy

You toggled the privacy sliders off in Windows 11, you don't want to share your data with Microsoft, and that's the end of it, right? It turns out Windows 11 is collecting a lot of your data regardless, even on a brand-new PC.

Neowin recently reported on a YouTube video by The PC Security Channel where they showed how a brand new Windows 11 laptop versus a fresh Window XP install behaved in terms of what data, if any, was being sent online.

Read more
The best VR headset might be one you’ve never heard of
Alan Truly turns toward the camera, wearing the Varjo Aero VR headset.

It's no surprise that the best VR headsets are those in use by corporations and organizations that are doing simulation, design, and research. While Meta, HTC, and other well-known VR headset manufacturers have upped their game with the latest batch of high-end, consumer headsets, they still can't really compete with the very best from companies like Varjo that design specifically for the enterprise VR market.

You might not have heard of this company before, but in 2022 Varjo began shipping its lowest-cost model, the $1,990 Varjo Aero VR headset. The new headset quickly began making waves as one of the best PCVR solutions available to consumers. I recently had a chance to go hands-on with this premium VR device to find out whether it's really worth the expense.
The best display

Read more
Hackers can now sneak malware into the GIFs you share
A video call in progress on Microsoft Teams.

How low will malware go to get onto your device? We thought using Minecraft to gain access to your computer was the most nefarious method hackers have produced, but there's a new, even lower type of attack that uses Microsoft Teams and GIFs to mount phishing attacks on your computer.

The new attack is called GIFShell and it installs malware on your computer to steal data. It does so by sneaking itself into innocent-looking GIFs and then waiting for you to share the GIF with your colleagues via Microsoft Teams.

Read more