If you are like me, and use your Facebook account to log in to your Spotify account or any other service for that matter, you might find this post a little interesting. Now, two factor authentication, in case you don’t know, is a safety measure most companies have adopted to give it’s customers an added layer of security. What it does is, it does not allow you to log in to your account merely by using your username and password, but rather it sends you a text on your cellphone to verify if it’s really you who is trying to log in. Pretty neat trick. For some reason, our friends at Spotify don’t care about this, and so they have not implemented this feature. You can see why it is causing me a lot of headache, especially when I get an email one day, saying someone from Nigeria has logged in to my Spotify account. The first thing that came to mind is “what is he going to do? steal my playlist?”, but then I realized I have my credit card information stored on that account. So I email the guys at Spotify, letting them know what happened. The guy writes back saying “everything is okay”. He then follows to bullshit me on how much they care about my security. What’s interesting about all this is that Facebook (the app that I used to log in to Spotify) does have two-factor authentication. Somehow the hackers bypassed Facebook’s security mechanism to get access to my Spotify. So what I’m trying to say is, we’re fucked.