Spotify Free (ads) causes browser to launch on malware / virus websites

There's something pretty alarming going on right now with Spotify Free. This started a several hours ago. If you have Spotify Free open, it will launch - and keep on launching - the default internet browser on the computer to different kinds of malware / virus sites. Some of them do not even require user action to be able to cause harm.

I have 3 different systems (computers) which are all clean and they are all doing this, all via Spotify - I am thinking it's the Ads in Spotify Free. I hope this has been noticed and Spotify staff are fixing it - fast. But it's still puzzling something like this can actually happen.

 

From what I have read so far I have understood this issue has been happening with Spotify Free before. Nevertheless, it's really dangerous for users and amazing how it has not been fixed. These malware launches probably happen during showing certain ads but malware / virus sites have nothing to do with the advertisers. Tells how big of a problem it seems to be (hacked server, spotify admin accounts etc)...

Hey,

 

We've identified an issue where a small number of users were experiencing a problem with questionable website pop-ups in their default browsers as a result of an isolated issue with an ad on our Free tier. We have now identified the source of the problem and have shut it down. We will continue to monitor the situation. If you see this issue again, please let us know the exact date and time in this thread.

 

Thanks as always for bringing your reports to the Community! 

Comments
Spotify
Spotify

Thanks for that info. 

 

@illoria, we had a little trouble opening the link. No worries though, can you let us know what Spotify/OS version you're rocking? 

 

@eetuholopainen and @OssiKultalahti, are you still having issues? Also, does the app get unresponsive after the ad? 

 

@luhlibeatzz, that's great to hear. Did you do anything odd for it to work? It'd be super helpful if you could give us some info regarding that 🙂 

dvbt
Casual Listener

1. Latest Spotify version, reinstalled OS (Win7 x64) and Spotify and same thing happened.


2. You mean whether the ad is always the same? It opens the same ad every few minutes, but if I relogin, then it starts opening different one. So it changes between sessions. The pages have long URLs (just like the yu0123456 one) and a lot of redirects before landing on something, usually promoting some browser plugins I've never heard of.



4. No luck with that.


5. No

 

 

starless72
Newbie

Hey this just happened to me for the first time, too.

Spotify Free 1.0.38.171.g5e1cd7b2 on OSX El Capitan 10.11.6.

I do not know if it is a coincidence, but it happened soon after I clicked on a playlist with a strange name: "z+jh */".

Even more strange is that this playlist is among the ones I'm following, but I do not remember I ever selected it. I know the music it contains, though, so maybe it had a different name before.

Anyway, I just clicked on it and was looking at it - not even listening - when a couple of ad tabs opened in Chrome. The tab name showed something like "pop-under ad...". I cannot tell which ads were they because I closed them immediately.

Another two opened some minutes later, closed again by me.

 

I suspected Spotify because I didn't have anything else special open, apart from my usual apps and web pages. And I was indeed using Spotify in that moment.

 

Then I started having issues with the internet connection, again it seems strange this can be related, but you asked if Spotify started being unresponsive... It actually lost connectivity, but also other apps on my Mac did it. I quitted and then restarted Spotify, and now everything is working fine.

Coincidence?

 

Marco

OssiKultalahti
Newbie

Yeah still having problems. Spotify doesnt get unresponsive after the ad

odwaz
Newbie

Yeah, the "pop-under ads" are back as of today. They stopped appearing for a couple days, like other users said. No harm done, but they're kinda suspicious-looking sites. I only now realized it was linked to Spotify, earlier I thought I had an infection in my computer, so tried with practically every scanner and disabled browser add-ons. Now I started Spotify and the ads are back opening randomly.

 

Running W10 64-bit and latest Spotify 1.0.38.171.g5e1cd7b2

lilyhammer
Newbie

I am having this issue since a few weeks now. Spotify keeps opening ads in my web browser every 5-10 or so minutes. After I close spotify the pop-under ads stop.


If the representatives have no real answer to this, I take it this is their new way of monetizing users which is completely unacceptable, in which case it would be time to move onto other services.

nygren
Newbie

1. OS X
Spotify version 1.0.38.171.g5e1cd7b2
This version of Spotify had not shown this problem before (unless Spotify has started to auto-update without my permission).
Browser: Chrome.


2. The ads only open if Spotify is open and open every few minutes. Without Spotify running, the problem never appears.
Ad opened differs. Once it was bet365.com after a redirect url. Another time it was a less "legit" site. I don't remember the sites opened the other times because I killed the tabs as soon as they opened. The ad opened seem to differ from the ad displayed in the player - the ad displayed in the player when this happens seems to vary and be legitimate ads, e.g. Svedbergs (Swedish manufacturing company) was showing before and after the Bet365 ad opened. The currently displayed ad had been showing for a few seconds before this happened.


Opened url for the less "legit" site:

http://pocofh.com/click?i=87&h=Ax722bagzrnWE3lqfHxoyogYjnD_-mpnDKCa_6dgCn_Wl9lDUWpDbo7qLeFHMqI5jUtLf...

Which redirected to

http://appless.store/mk/indexse.php?s=244519388
Which popups this dialog with fake info (in incorrect Swedish that I've translated to "correct" English for you here):
"appless.store says:

Discovered trojan virus.

Last time you visited the web you received a trojan virus that has infected your Mac.

Press OK to start the repair process."

 

5. No. Just started happening about a week ago. No OS, Spotify or browser updates had been done prior to it started happening.

AMPQTay
Newbie

(Edited to provide more information)
Also having this issue. I'm from Canada.

  1. What Spotify/OS version are you rocking? | Free version 1.0.38.171.g5e1cd7b2; Windows 7.
  2. Is this happening with a specific ad? | I close them all relatively quickly, but there seem to be a variety of pop-under ads. One I can recall was from something like... abckj123, or something. Update: It seems to be caused by certain banner ads, can confirm that I had the "You're a winner!" banner ad while this was going on.
  3. Any videos or screenshots would be super helpful. | I have Spotify closed until the issue is solved, unfortunately.
  4. Have you tried reinstalling/logging out? Does that help? | Not yet, see above.
  5. Did it start happening after a specific event? | It started happening a few hours ago, for me. Been using Spotify most of the day.

Not the most helpful input, sorry, just wanted to throw some extra attention on the issue.

Luzandro
Newbie

Same on Ubuntu 16.04 with Spotify free 1:1.0.38.171.g5e1cd7b2-22

At first I thought some browser-extension went crazy, but it also opens when the browser isn't open and spotify is running. 

 

Here is a screenshot, but I can't say for sure if it has anything to do with this banner, or if this is already the next. And as nygren said, most links are even much more shady then this bet-at-home ad. The original URL that gets opened: http://b.yu0123456.com/newServing/cpalinks.php?qid=147555855385track&memkey=5e159369cc0e14786ae99414...

 

/edit: got another one while a banner with "Ads by REVERBNATION" was shown, just like before

tokery
Casual Listener

Having the same problem with the pop under ads

1. Running Spotify 1.0.38.171.g5e1cd7b2 on Windows 10 Anniversary Edition

2. The ad that appeared in the spotify player when it occured should be shown belowSpotifyAds.PNG

No events occured in the last few days that could have caused this problem.

Seems to open ads through the default web browser; in my case Microsoft Edge.

Anti-virus found nothing, never clicked the ad in spotify

Pop under ads appear in random intervals. Eg. (20 minutes -> 10 minutes -> 1 minute -> 2 minutes)