Spotify 2FA is essential due to the amount of personal and financial data it collects


New updates are added at the bottom of the story…

The original story (from February 27) follows:

Streaming is not only the most popular way to listen to music, but also the most convenient for many people. New features such as lossless and spatial audio have further intensified the industry’s competition for the best.

But Spotify remains the most popular and arguably the best of them all, even with the promised HiFi support that has yet to arrive. However, that doesn’t make it the perfect music streaming service, especially when it comes to security.

Spotify has pushed to stand out with the addition of non-music content like podcasts, but it’s still eclipsed by closest rival Apple Music when it comes to securing the user data it collects. and stores on its servers.

On his official support siteSpotify has provided a number of ways for subscribers to protect their accounts and personal information.

Listed are basic measures such as using a secure password, employing device security through regular firmware and anti-virus program updates, removing access to third-party applications and the disconnection of public devices.

Two-factor authentication, also known as 2FA, is conspicuously absent from the list. Essentially, 2FA provides an additional security shield against any illegal attempts to access online accounts. You have to prove who they claim to be, even if they have the correct password.

With two-factor authentication, a username and password are not enough to log into an online account. In addition to the two, it is still necessary provide more information about who they are, what they know or have.


Additional information can be a random code sent to your home phone number via text message, an answer to a “secret question” or even a fingerprint. A compromise to any of these factors and access to the account will be denied.

That’s what you get with Spotify’s closest rival, Apple Music. Enabling 2FA prevents hackers from stealing accounts, and with little or no reporting of hacked accounts, there’s less work for Apple Music support.

The same cannot be said for Spotify, however. In fact, two men were convicted earlier this month in the UK after being found in possession details of over 64,000 credit cards belonging to various Spotify, Apple and Netflix users.

There have been many similar cases for Spotify users in the past, where accounts were pirate and personal information traded on the dark web for as little as $1.

Spotify Featured Image

To this day we still have reports of these hacking cases doing the rounds. And to prevent such events from happening again, the British police advised enable security measures like 2FA on Netflix, Apple and Spotify accounts.

Yet, despite the massive resources, Spotify lacks this feature. Having two-factor authentication is the most basic step Spotify can take to alleviate this hacking problem, but the company remains mum on the subject.

The final word on 2FA support came from Spotify was back in 2018 when the company responded to a feature request, noting that it was investigating the possibility of supporting 2-factor authentication.

Over 7000 votes and hundreds of comments later but still nothing. On the brighter side, the feature request is still marked as “Under consideration”, which should give Spotify users some hope.


Still, for a company that collects a lot of personal and financial information from users on both free and premium accounts, it’s simply unacceptable that Spotify doesn’t have 2FA to protect that data from prying eyes.

Sure, two-factor authentication is not enough in today’s world, but according to cybersecurity analysts, most ransomware attacks could have been stop whether the target organizations had systems supporting multi-factor authentication.

On the contrary, this function is no longer an option but a necessary security measure if Spotify is serious about protecting user data and preventing future incidents of piracy.

I know there are tools like Google Authenticator that can serve this purpose, but you shouldn’t need an extra app on your phone for a function that could easily be built right into the service itself.

Hopefully that changes soon, perhaps even with the much-anticipated HiFi support that has remained elusive for some time. Only time will tell.

Be sure to post your thoughts via the comments section. You can also vote on the Twitter poll below, with the results to be revealed after a week.

Update 1 (March 06)

Survey results are livewith a clear majority (over 70%) of those voting to agree that Spotify should add support for two-factor authentication (2FA).

In case you missed the poll, you can always share your thoughts in the comments section at the bottom of this page.

PiunikaWeb began as a purely investigative tech journalism website with a primary focus on “breaking” or “exclusive” news. In no time, our stories were picked up by Forbes, Foxnews, Gizmodo, TechCrunch, Engadget, The Verge, Macrumors and many more. Would you like to know more about us? Head here.


Comments are closed.