We have discovered a vulnerability that affects versions of the Spotify app for Android older than 1.1.1. If exploited, the vulnerability can allow bad guys to control what is being displayed on the app interface. This vulnerability can be potentially abused by cybercriminals to launch phishing attacks that may result to information loss or theft.
Those running Spotify Free on the desktop are periodically seeing strange browser behavior, with malicious ads serve malware popping up unbidden. As a post on the Spotify user forum explains: “If you have Spotify Free open, it will launch—and keep on launching—the default internet browser on the computer to different kinds of malware. Spotify doesn't contain any malware software, but make sure you only download the app from: spotify.com/download. It sounds like these are false-positives, I've gone ahead and reported this to the right folks. Let me know if there's anything else. Enjoy and welcome aboard! It’s been reported that Spotify Free for desktop computers has been causing several issues for users. The music streaming service was apparently launching malware websites on users’ web browsers. Download Malwarebytes for your computer or mobile device. Whether you need cybersecurity for your home or your business, there's a version of Malwarebytes for you. Try our free virus scan and malware removal tool, then learn how Malwarebytes Premium can protect you from ransomwar.
Has Spotify Free Fixed The Malware Protection
According to reports on Spotify's forums and Twitter, adverts in the free version of Spotify have been installing malware on some users' computers. Free streaming music is a beautiful thing; free.
Spotify quickly responded to our discovery by fixing the flaw in the 1.1.1 version of the app. Users are encouraged to make sure they are using the latest version of Spotify for Android.
Affected Activity
![]()
The vulnerability affects a specific activity (com.spotify.mobile.android.ui.activity.TosTextActivity), which is designed to retrieve and show Spotify web pages on the app. The vulnerability causes the content of these exported web pages to be visible to other apps installed in the phone. Furthermore, the bug can allow a separate app, process, or thread to trigger the activity without the need for additional permissions.
Using a malicious app, an attacker can exploit this activity to alter the content being shown by the app to users. https://adxqcia.weebly.com/blog/spotify-download-uptodown. For example, we were able to show the Google home page on the Spotify app. Far more malicious pages can also be displayed within the app.
It should be noted that the malicious app can trigger and “minimize” the activity at will. If a user tries to stop the Spotify app by using the “Back” button, the malicious content will show up on the screen. Users who may not be overly familiar with the app might view this action as a normal routine for the app.
Because potential attacks do not require additional permissions, users may not be aware of any suspicious activity that may arise from this situation. No additional permissions also mean that AV solutions and threat researchers may find it harder to detect and analyze malicious activity.
Potential for Phishing Attacks
Attackers may take advantage of this vulnerability to create phishing pages that ask for sensitive information such as user names, passwords, contact details, and even payment information. The latter is especially plausible considering Spotify offers both free and premium services. A well-crafted phishing page might cause users to assume that the request for financial information is part of a routine or process. A phishing page is often just the first step to other schemes. The stolen information could be used for other schemes such as identity theft, fraud, or even targeted attacks.
Cybercriminals may also create pages that will lead users to other threats such as malware. Because the vulnerability lies within the official app—compared, say, to a fake Spotify app—users will be prone to believe the malicious pages being displayed. These scenarios are similar to ones we previously discussed in our blog entry, Android App Components Prone to Abuse.
Free spotify premium wit. Spotify has fixed the flaw in Version 1.1.1 of the Android app. We advise Spotify users to upgrade to that version or download the latest version to help protect themselves against this issue or visit the Google Play store to automatically get the latest update. At the time of publishing, the latest version is 1.1.2.
As of this writing, we are not aware of any attacks using this vulnerability.
Has Spotify Free Fixed The Malware Free
Learn how to protect Enterprises, Small Businesses, and Home Users from ransomware:
Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |