Cybersecurity Insight

Malicious Advertising Hits Spotify Users

10 Oct

Spotify experienced another malicious advertising attack earlier this week – though the last occurred in 2011, the popular music platform has dealt with a number of small cyber security issues, bringing a significant idea to light. Specifically, it’s one thing if a user interacts with a platform that doesn’t have a required download, and it’s quite another if Spotify users using the paid or free version have to consider that their operating systems will always potentially be a target.

Though original reports suggested that the vulnerabilities lay within the Windows 10 operating system, others utilizing Ubuntu and MacOS reported the same issues. Only reported on the free version of the downloaded music platform, users took to Twitter to express their discontent at what seemed to be a glitchy user experience. But once a few curious listeners started looking into their network’s operating speed and overall functionality, the truth came to light. Essentially, through no interaction other than using Spotify to listen to music, the malicious advertising agents lurking within the free platform took hold of the user’s browsers and opened malicious websites without their express consent or knowledge. Spotify resolved the problem quickly, and no additional backlash has been reported – yet.

Consider the following: in 2012, over 10 Billion ad impressions were compromised by malicious advertisements; remember, this is a statistic from 2012. The number is likely quite higher and, from trend reports, continues to be growing at a consistent and steady pace. The unfortunate issue with malicious advertising is that, in order to wreak havoc on your operating system, the user in question just needs to visit a website that has an infected advertisement. Most attackers behind malicious advertising will not be brought to justice, nor are they found out right away – normally they pose as a reputable company interested in placing online advertisements within certain sites. Eventually, that reputable company shows its true colors, and presto! the website you own or visited is infected and you were none the wiser.

Though there isn’t much to be done to avert malicious advertising before it takes over, you can rest assured that monitoring and managing your network and infrastructure will show when a malicious advertisement has unleashed an attack. Furthermore, having a team of cyber security experts from Neovera will give you 24×7 coverage and peace of mind to handle your direct business goals and opportunities.