Steve Zurier reports:
Streaming service Spotify has notified an unspecified number of its customers of a data breach, responding by resetting passwords on the accounts that were attacked.
[…]
In a breach notification letter dated Dec. 9 to its customers and filed with the California attorney general, Spotify said the company discovered the vulnerability on its system on November 12, but that the issue existed on its systems since April 9 of this year.
Read more on SC Magazine.