Data delivery services (music) - metadata harvested
This might not be the best place to ask, but has anyone got any experience looking at data delivery services (i.e. for Spotify/iTunes) and how metadata is harvested by malicious agents?
I've noticed that a lot of websites offer free music on non-official looking sites, and I was wondering how metadata is harvested from official delivery systems and how much the music industry had looked into this... I would have thought a lot of end users wouldn't really think too hard about it thus increasing potential malware infections.
Maybe one of you might know the best place to start looking at this. :-)