There doesn't seem to be a way to report suspicious activity, but I wanted to surface a potential incident.
I noticed today that I was suddenly following 3 similarly named playlists all created by the user dapjs, I definitely didn't do this willingly or knowingly. I have not given my account information to anyone else and it's impossible that someone I know used one of my devices to follow these playlists.
Worried my account may have been compromised, I have already used the "Sign out everywhere" feature and have reset my password. After posting this, I am going to unfollow these playlists.
All 3 of the playlists were made 4 days ago, and already have hundreds of thousands of followers. I'm suspecting there's been some kind of breach in security.
here is a link to the user's profile
https://open.spotify.com/user/dapjs
Hey folks,
Thanks for all of your reports. We can confirm the tech team are looking into this, and taking the necessary steps to fix it.
Just to confirm, Spotify has not been compromised and your data is secure. If you're concerned about the security of your account, we'd recommend checking these steps for what to do next.
Thanks!