Remove “Spotify Subscription Update” scam email

The “Spotify Subscription Update” scam email is part of a phishing campaign intended to steal users’ financial information. The email falsely informs users that their Spotify subscriptions have ended because of a payment issue. To supposedly continue using their premium accounts, users need to update their payment information. If users click on the link provided in the email, they’ll be redirected to a phishing site that asks users to provide their Spotify login credentials. Users may also be asked to provide their payment card information. 

 

 

The “Spotify Subscription Update” phishing email falsely claims there’s an issue with users’ payment, stating that their Spotify premium subscriptions have been canceled because of it. While Spotify does send emails regarding payment issues, legitimate emails look very different from this one. Users familiar with Spotify’s emails will recognize the phishing attempt right away. The goal of this email is to obtain users’ Spotify login credentials and payment card information.

The email claims that it’s necessary to update payment information in order to continue using Spotify. If users engage with this email, they will be led to a phishing Spotify website that prompts them to log in. Entering their email address and password will send their credentials to the malicious actors behind the phishing campaign. Stolen Spotify credentials can be exploited in several ways. Cybercriminals might take over the account immediately by changing the email and password, preventing the legitimate user from accessing it. Users who infrequently use their accounts may not realize they’ve been locked out for a while. If Spotify cannot assist in recovering the account, users would have to cancel their payment cards to stop unauthorized charges. Alternatively, some malicious actors might choose not to hijack accounts but instead sell access to them at a discounted rate. Users looking for cheaper Spotify subscriptions could end up using these stolen accounts until the original account holders notice the unauthorized access, which may take a while.

Below is the full “Spotify Subscription Update” phishing email text:

Subject: Attention: Time to Review Your Spotify Account Details – 5428756

Spotify Subscription Update

Dear costumer

We wanted to inform you that your Spotify subscription has ended due to an issue with your payment details.

To continue enjoying your favorite music and playlists without interruption, please update your payment information by clicking the link below:

Update Payment Information

If you have any questions or need further assistance, feel free to contact our support team.

Thank you for being a valued listener!

Best regards,
Spotify Team

© 2025 Spotify. All rights reserved.

How to recognize phishing attempts

Phishing emails that target many users simultaneously are often quite obvious because they’re generic. If users know what to look for, they should be able to identify many such emails with relative ease.

The “Spotify Subscription Update” phishing email is quite obvious. Firstly, it’s sent from a suspicious email address that looks completely random. This address is not affiliated with Spotify, as legitimate emails from the company always include its official name. Generic malicious emails are often sent from random-looking email addresses. However, more sophisticated phishing campaign emails might be sent from more legitimate-looking email addresses. A quick Google search can help verify the authenticity of an email address.

Spotify users should be able to quickly spot this fake email since it doesn’t resemble the usual emails from Spotify. Typically, Spotify emails address recipients by their names, but this email fails to personalize its greeting and uses “costumer” when addressing the recipient. Even without the mistake in the greeting, it’s obviously a fake email because Spotify does not use such generic words to address its customers.

The most significant indicator of a phishing attempt is the URL users are directed to upon clicking the “Update Payment Information” button. Users are first prompted to log in to their Spotify accounts. While everything may appear nearly identical to Spotify’s legitimate login site, the URL is a dead giveaway. Although malicious actors can use various tactics to make more legitimate-looking URLs, users should be able to tell as long as they pay close attention. Users should always double-check the URL before logging in anywhere.

“Spotify Subscription Update” phishing email removal

If this email lands in your inbox, just delete “Spotify Subscription Update” email without paying attention to its content. If you entered your login details, immediately log in to your Spotify account and change your password. If you’re unable to access your account, reach out to Spotify for assistance in recovering it. If recovery isn’t possible, contact your bank to cancel your payment cards to protect against any unauthorized charges.