The California Office of the Attorney General reported a data breach involving American Express Travel Related Services Company, Inc. on August 26, 2015. The breach occurred on April 12, 2014, due to unauthorized access to a merchant's website, potentially exposing Cardmembers' American Express Card account numbers, names, and other card information, while Social Security numbers were not affected.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-57567
TPRM report: https://www.rankiteo.com/company/american-express
"id": "ame223072725",
"linkid": "american-express",
"type": "Breach",
"date": "4/2014",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Financial Services',
'name': 'American Express Travel Related Services '
'Company, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'type_of_data_compromised': ['American Express Card account '
'numbers',
'names',
'other card information']},
'date_detected': '2014-04-12',
'date_publicly_disclosed': '2015-08-26',
'description': "Unauthorized access to a merchant's website potentially "
"exposed Cardmembers' American Express Card account numbers, "
'names, and other card information.',
'impact': {'data_compromised': ['American Express Card account numbers',
'names',
'other card information']},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'American Express Travel Related Services Data Breach',
'type': 'Data Breach'}