Malware is capable of stealing users passwords, taking screenshots of their computers and lifting documents. Attackers used malicious ads to lure in users with promotions for real apps to lure them in. Once clicked, those ads sent users to the Spotify or Microsoft Store scam websites harboring samples of the Ficker stealer family family. Organizations can defend against Ficker by applying encryption to their data protection efforts, according to security experts. At this time, the actual size of the real Spotify mobile and desktop apps was at least 150 MB.”]
Source: https://securityintelligence.com/news/microsoft-spotify-scam-sites-ficker-malware/