Some users of the free, ad-supported version of digital music service Spotify are getting hit by malware-based attacks, reported The Register earlier today, echoing a report from Netcraft.

Netcraft explains that at least one attack used a Java exploit to drop malicious executable code on a victim’s computer, with security software identifying one of the malicious payloads as Trojan horse Generic_r.FZ.

According to Spotify’s Twitter feed, an investigation is underway – the startup just told users it turned off all third-party display ads until it finds which ad triggered the attacks.

As always, make sure the security software you run locally to protect your from viruses and malware is completely up-to-date.

Crunchbase

• SPOTIFY

Company: Spotify

Website: spotify.com

Launch Date: December 26, 2009

Funding: $183M

Spotify has created a lightweight software application that allows instant listening to specific tracks or albums with virtually no buffering delay. It was launched in the fall of 2008 and had approximately 10 million users by September 2010. Spotify offers streaming music from major and independent record labels including Sony, EMI, Warner Music Group, and Universal. Users download Spotify and then log onto their service enabling the on-demand streaming of music. Music can be browsed by artist, album, record...

Learn more