"Our evidence shows that only one Spotify user's data has been accessed and this did not include any password, financial or payment information," Spotify CTO Oskar Stal wrote in a statement on the company's website. "We have contacted this one individual. Based on our findings, we are not aware of any increased risk to users as a result of this incident."
Still, the company says several users will be asked to re-enter their user names and passwords "as a precaution" in the coming days, and all Android app users are being asked to update their apps.
"If Spotify prompts you for an upgrade, please follow the instructions," Stal wrote. "As always, Spotify does not recommend installing Android applications from anywhere other than Google Play, Amazon Appstore or https://m.spotify.com/."https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
"We have taken steps to strengthen our security systems in general and help protect you and your data -- and will continue to do so," Stal added. "We will be taking further actions in the coming days to increase security for our users."