{
	"id": "0c265552-3555-47ca-a165-15fcdfbe8fce",
	"created_at": "2026-04-06T00:06:12.031703Z",
	"updated_at": "2026-04-10T13:11:35.062026Z",
	"deleted_at": null,
	"sha1_hash": "73637464bea65561c499879c537960b2e3d2e171",
	"title": "Spotify ads hit by malware attack",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 31420,
	"plain_text": "Spotify ads hit by malware attack\r\nBy BBC News\r\nPublished: 2011-03-29 · Archived: 2026-04-05 23:06:10 UTC\r\nSpotify has apologised to users after an advertisement containing a virus was displayed to some users of the\r\nmusic-streaming service.\r\nThe advertisement, which appeared within Spotify's Windows desktop software, did not need to be clicked on in\r\norder to infect a user's machine.\r\nThe exploit would install a bogus 'Windows Recovery' anti-virus program.\r\n\"Users with anti-virus software will have been protected,\" Spotify said in a statement.\r\n\"We quickly removed all third party display ads in order to protect users and ensure Spotify was safe to use.\r\n\"We sincerely apologise to any users affected. We'll continue working hard to ensure this does not happen again\r\nand that our users enjoy Spotify securely and in confidence.\"\r\nThe vulnerability only affects users with free subscriptions.\r\nSecurity research specialists Websense said it received the first report of \"malvertising\" on the service at\r\n11:30GMT on 24 March, noting that it used the Blackhole Exploit Kit - a tool for hackers - to carry out the attack.\r\nMalvertising is usually confined to content viewed through web browsers, but this instance was displayed within\r\nthe Spotify software itself for people with a free membership.\r\n\"The application will render the ad code and run it as if it were run inside a browser,\" explained Websense's Patrik\r\nRunald in a blog post, external.\r\nSource: https://www.bbc.com/news/technology-12891182\r\nhttps://www.bbc.com/news/technology-12891182\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://www.bbc.com/news/technology-12891182"
	],
	"report_names": [
		"technology-12891182"
	],
	"threat_actors": [
		{
			"id": "aa73cd6a-868c-4ae4-a5b2-7cb2c5ad1e9d",
			"created_at": "2022-10-25T16:07:24.139848Z",
			"updated_at": "2026-04-10T02:00:04.878798Z",
			"deleted_at": null,
			"main_name": "Safe",
			"aliases": [],
			"source_name": "ETDA:Safe",
			"tools": [
				"DebugView",
				"LZ77",
				"OpenDoc",
				"SafeDisk",
				"TypeConfig",
				"UPXShell",
				"UsbDoc",
				"UsbExe"
			],
			"source_id": "ETDA",
			"reports": null
		}
	],
	"ts_created_at": 1775433972,
	"ts_updated_at": 1775826695,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/73637464bea65561c499879c537960b2e3d2e171.pdf",
		"text": "https://archive.orkl.eu/73637464bea65561c499879c537960b2e3d2e171.txt",
		"img": "https://archive.orkl.eu/73637464bea65561c499879c537960b2e3d2e171.jpg"
	}
}