Another Database leak or a phishing email?

[Ultegra134]

Hello there,
I was looking through my spam folder on my main email this time and I stumbled upon an email from Solaris group, the company who issued Binance's debit cardsz informing me about a possible data breach. At first, I thought it's another phishing email but upon reading it, it looks legit, since it doesn't prompt you to any sketchy looking website.

Privacy and our personal details are of outmost importance, yet, I personally haven't seen an announcement from Binance regarding such an important matter.

"Dear Customer,

We are writing to all former Binance Card Holders to inform you that we are currently investigating a data breach where personal contact information may have been accessed.

We want to assure you that as your Binance Card Account has been closed since December 2023 there is no threat to your account or funds, it is crucial to be aware of the increased risk of phishing attempts during this time.

In light of this situation, we urge you to be vigilant and take the following precautionary measures:

1. Beware of Phishing Attempts: Do not act on any unsolicited call, email, or SMS that you may receive. Phishing attempts may try to trick you into providing personal information or clicking malicious links.
2. Do Not Share Your Personal Data: Never share your personal information, such as passwords or account details, with any third party.
3. Do Not Click on Suspicious Links: Avoid clicking on any links or downloading attachments from unsolicited messages.
4. No Direct Calls Asking for Personal Information: Neither we nor our partners will ever call you directly to ask for personal information. If you receive such a call, please report it to us immediately.

Please ensure that you only follow information coming from our official email address, which can be validated by the sender line showing contact@solarisgroup.co.uk.

We are taking this matter very seriously and are working diligently to resolve it. Your security is our top priority, and we will keep you updated with any further developments.

If you have any questions or concerns, please do not hesitate to contact our customer service team via contact@solarisgroup.co.uk and https://customersupport.solarisgroup.co.uk/hc/en-gb.

We may contact you again if there are any further updates,

Thank you for your understanding and cooperation.

Best regards,
Solaris EMI (Formerly Contis)"

[DaveF]

Looks like they *think* they have a data breach and are doing the cover your ass thing to make sure that if something does happen they can point and say look we warned them.

Different countries have different laws concerning notifications too, so if they saw or suspect something strange they might have to send that email even if they are somewhat certain no data was taken.

In the end, it probably does not matter anyway. Just stay paranoid.

-Dave

[dkbit98]

Hello there,
I was looking through my spam folder on my main email this time and I stumbled upon an email from Solaris group, the company who issued Binance's debit cardsz informing me about a possible data breach. At first, I thought it's another phishing email but upon reading it, it looks legit, since it doesn't prompt you to any sketchy looking website.

But I thought that everything with Binance was ''safu'' but this Titanic is sinking ever since CZ was sento to serve mini-prison time.  
They are not saying what personal information could be leaked, but they wouldn't warn everyone if it was only email addresses.
Let's wait for official confirmation but this is another good example why people should not easily perform KYC verification for exchanges, crypto cards and other things.

Why would they use .co.uk domain that is redirecting to .com domain except for page bellow?

Code:

https ://customersupport.solarisgroup.co.uk/hc/en-gb

It looks like Plutus cards are also affected with this.

[paid2]

Wasn't it Contis who issued Binance cards ?

[Ultegra134]

Wasn't it Contis who issued Binance cards ?

That's correct, the email says "Solaris EMI (Formerly Contis).

But I thought that everything with Binance was ''safu'' but this Titanic is sinking ever since CZ was sento to serve mini-prison time.  
They are not saying what personal information could be leaked, but they wouldn't warn everyone if it was only email addresses.
Let's wait for official confirmation but this is another good example why people should not easily perform KYC verification for exchanges, crypto cards and other things.

Why would they use .co.uk domain that is redirecting to .com domain except for page bellow?

Code:

https ://customersupport.solarisgroup.co.uk/hc/en-gb

It looks like Plutus cards are also affected with this.

Supposedly no funds or accounts are at risk, but they are not disclosing what information has been leaked, if it has been actually leaked, and they're not suspecting it, as @DaveF already mentioned. Binance should at least issue an announcement to inform their users if they suspect such an incident. Anyway, I don't believe it's of any outmost importance, but it proves how easily your data can be leaked and you might not even realize it.

[uchegod-21]

Supposedly no funds or accounts are at risk, but they are not disclosing what information has been leaked, if it has been actually leaked, and they're not suspecting it, as @DaveF already mentioned. Binance should at least issue an announcement to inform their users if they suspect such an incident. Anyway, I don't believe it's of any outmost importance, but it proves how easily your data can be leaked and you might not even realize it.

I do not see the information in OP as Data leak awareness and neither is it a phishing email. It is an email to raise your consciousness and make you to be more security conscious. As they stated, Binance card had been stopped since last year, but some criminals might have been using that to scam people. So, the email was your awareness and to remind vigilant.
Binance wouldn't send such a message even if there was real data leak. Binance has been on the news enough from the CZ court issues till date. Not nice to see them on the news continuously for bad reasons.

[SFR10]

They are not saying what personal information could be leaked, but they wouldn't warn everyone if it was only email addresses.

You're right with the latter part, but Solaris did mention what kind of personal information could've been leaked for the incident in question ^[source]... Surprisingly, it didn't include users' addresses, so we should take that with a grain of salt ^{[assuming they handled the shipping as well]}.

• _{I wonder how much longer Solaris will take before releasing another update for the data breach that happened roughly 20 days ago!}

[Ultegra134]

I do not see the information in OP as Data leak awareness and neither is it a phishing email. It is an email to raise your consciousness and make you to be more security conscious. As they stated, Binance card had been stopped since last year, but some criminals might have been using that to scam people. So, the email was your awareness and to remind vigilant.
Binance wouldn't send such a message even if there was real data leak. Binance has been on the news enough from the CZ court issues till date. Not nice to see them on the news continuously for bad reasons.

Not exactly, the email's title is "Important Notice: Data Breach Investigation", while it's also mentioned in the email itself that they're investigating a data breach where personal data may have been leaked. Their email is to raise awareness and not open any phishing or suspicious emails you might receive, which suggests that there's a decent chance our email addresses were leaked. Binance wasn't the one issuing the cards, Solaris was, hence why it's them sending the email.