If you think your Spotify account has been hacked, first, ask yourself these two questions:
1) Am I 100% sure I have not forgotten my password?
2) What makes me think I have been hacked?
Some typical signs include:
Blocked access— You may be suddenly logged out of your account and can no longer access it as your email, phone number and/or password are different.
Security email from Spotify— You have received an email that someone logged into your account from a different location, IP address, or device. The email should come from an address ending in "@spotify.com," but if you're suspicious you can also forward it to [email protected] to verify its legitimacy.
Unusual login activity— You are constantly having to log back into the app, though you never logged out of your device.
High data usage— Like longer screen time, a higher-than-usual data usage on the app can signal an account breach.
Suspicious behavior— Any recently played songs or playlists in your account that you do not recognize can indicate compromise. This can also be new followers in your friend list.
If you think you have been hacked but can still access your Spotify, immediately:
Change your account password. Make it strong and unique, and do not share it with anyone. You can change your Spotify password by clicking here.
As an added layer of safety, you should also change any passwords for connected accounts such as Facebook, Apple, Hulu, etc.
Sign out of all devices. You should log in to your Spotify account page and and then select "SIGN OUT EVERYWHERE" at the bottom. Though this will sign you out of your Spotify account on recognized devices, it will also kick out the suspicious ones.
If you ever use a public or borrowed device in the future, be sure to log out of it when you're finished listening.
Removed 3rd Party Access. On your Spotify account page, go to "Apps" and select "REMOVE ACCESS" on all of them. You'll always be able to sign into them again later, but this will ensure that none of your connected accounts are compromised.
Verify your email and payment information. Make sure that the email and payment method associated with your account are accurate on the Spotify account page. This helps verify that your account belongs to you in case you ever lose access to it again in the future.
Secure your email account. Change your email password so that it is strong and also different from your Spotify one.
If you have been hacked and can no longer access your Spotify:
Secure your email account. If you lost access because the hacker has changed the password, you must contact your email provider in order to initiate an identification process to recover your account. This step is crucial to re-accessing your Spotify.
Initiate the Spotify account recovery process. You will need to Contact Spotify through their support messaging system. When taken through the prompts, select "Someone's taken over my account."
In most cases, you'll just enter your Spotify username, or the email address that you used to register. They'll send you an email with a link to reset your password. Be sure to check your spam/junk folders if you didn't receive it.
If you don't know the email associated with your Spotify account or it has been changed, they'll verify that you're the account owner using either:
The last 4 digits of your payment card
A picture of a recent Spotify charge on your bank statement (Don't include your full card number, expiration date, or 3-digit code in any screenshots)
Things to keep in mind with Spotify:
There are a few ways to sign up, e.g. with email, phone number, Facebook, Apple, or Google. Try logging in with these if you're having difficulty finding your account.
Do not submit more than one support request for a hacked account, as that will only delay your account recovery. When you submit too many requests, you'll be locked out and have to try again later or use a different device.
You can always Contact Spotify Support if anything has been lost on your account. They'll help you restore your account details and playlists.