Spotify should, as a matter of good practice and safety, implement 2-step authentication.
Previously, Spotify enabled the option to log out other sessions other than the current session.
This would prevent hackers from stealing accounts, which would additionaly lead to less account hacks and less work for Spotify employees to assist in these cases.
More info: https://twofactorauth.org
Updated on 2017-08-29
Hey @ThomasVH we've revisited this idea with the teams behind logging into Spotify. We've decided not to move forward with two-factor authentication at this time.
If you're interested in security, we do have some tips to protect your Spotify account here. Of course if our status on this changes we will let you all know right here. Thanks!
+1000 to this. Recently had the email for my account changed without my authorization, which never would have been possible with this.
+1001 spotify 2fa. I got hacked the other day.
Two-factor auth. is must-have feature! Also add verification, when someone tries to change your email / password, please! There is a lot of users with premium / family account / linked credit card... so some additional protection is necessary.
Welcome to 2017; this thread is now 2 years old. Your app security is 0 of 5 according to helpnetsecurity - https://www.helpnetsecurity.com/2017/08/10/password-power-rankings/. What is listed on your security page is insufficient and mostly unenforced; I'm not going to care about your latest feature if my account gets hacked. The service and functionality is great but, in 2017, unprotected apps are just too dangerous.
The earliest request that I have found for Spotify to support 2FA actually predates this thread by years: 2013 (over 4 years ago). Spotify closed all older threads in favour of this younger one. Go figure.
Someone was using my spotify account (I still have no idea how, since I have 2 factor on facebook and I use facebook for logins).
I just canceled my subscription until this gets implemented on spotify, since the alternative (google music) has it.
2FA. Great idea. A must for securing any account web facing.
I couldn't agree more, I love Spotify but I'm shocked that they do not have a better system in place for protecting their customer's accounts. It seems like this issue has happened to A LOT of other people (including myself the other day).
I also noticed that this suggestion for 2-factor auth was originally posted in 2015 and NOTHING HAS BEEN DONE? That's ridiculous!!! If Spotify doesn't make security changes to protect their customers ASAP then I'll defininitely be switching to a different service.
How can you read these pages and not immediately be convinced? Holy **bleep** Spotify... How about instead of redesigning your UI for the 7th time just spend 5 days on implementing this. It's completely open source **bleep**, it's barely any effort and equivent in security to not having passwords on accounts