You are hereNewsSpotify fixes free download vulnerability


Spotify fixes free download vulnerability

Spotify has now confirmed that the issue has been fixed.

8 May 2013 | Category: Software

The music streaming service has moved quickly to fix a security hole that allowed users to download songs for free.

Users of the service were able to download music for free using a Google Chrome extension that exploited the music services offline mode feature.

The extension is known as "Downloadify" which was created Dutch developer Robin Aldenhoven exploits the fact that music on Spotify's web player is not encrypted.

The extension has since been removed from Google's web store having been declared as "not complying with its terms of service". However the extension is still freely available on other websites.

Spotify are likely to face stern questions from record labels who have put their faith in Spotify's paid service. They may also want to claim missing royalty payments.

Related reviews