The California Office of the Attorney General reported a data breach involving American Express Travel Related Services Company, Inc and/or its Affiliates on August 14, 2012. The breach occurred on March 2, 2012, due to unauthorized access to merchant data files potentially exposing American Express Card account numbers, names, and expiration dates, but not Social Security numbers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-32467
TPRM report: https://www.rankiteo.com/company/american-express
"id": "ame218072825",
"linkid": "american-express",
"type": "Breach",
"date": "3/2012",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Financial Services',
'name': 'American Express Travel Related Services '
'Company, Inc and/or its Affiliates',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'type_of_data_compromised': ['American Express Card account '
'numbers',
'names',
'expiration dates']},
'date_detected': '2012-08-14',
'date_publicly_disclosed': '2012-08-14',
'description': 'Unauthorized access to merchant data files potentially '
'exposing American Express Card account numbers, names, and '
'expiration dates, but not Social Security numbers.',
'impact': {'data_compromised': ['American Express Card account numbers',
'names',
'expiration dates']},
'references': [{'date_accessed': '2012-08-14',
'source': 'California Office of the Attorney General'}],
'title': 'American Express Travel Related Services Data Breach',
'type': 'Data Breach'}