American Express exposed to ‘third-party’ data breach

Image of hacker

The American credit card company revealed it suffered a data breach from a merchant processor yesterday (04/03/2024)

The story was reported by the technology news website, BleepingComputer.

You can read the full story here

How was it reported

According to BleepingComputer, a data breach notification was filed “with the state of Massachusetts under “American Express Travel Related Services Company,” the company warned customers their credit cards may have been stolen.”

The data breach notification warned that card members’ account details “may have been involved”, BleepingComputer claims.

The breach has led to account numbers, names and card expiration data being accessed by hackers.

American Express is unclear on how many customers have been affected after the merchant processor breach.

What was American Express’s response?

BleepingComputer got in touch with American Express for an update. The credit card company refused to comment as it does not disclose details of “their business relationships and merchant partners and had no further information to share at this time.” However, American Express did comment about reporting the incident and updating the customer.

American Express provided a statement via BleepingComputer: “When we learn about a data security incident that impacts our customers, we promptly begin an investigation and notify the appropriate regulatory authorities, as required,” American Express told BleepingComputer.

“We also work to identify impacted customers and understand the specific impacts, and then notify them as required by applicable laws and regulations.”

American Express has advised customers to review their account statement over the next 12 to 24 months and report any suspicious behaviour.

 

Scroll to Top