American Express Company

The California Office of the Attorney General reported a data breach involving American Express Travel Related Services Company, Inc. on August 23, 2013. The breach occurred on January 15, 2013, and involved unauthorized access to a payment processing service, potentially exposing account information of some Cardmembers including names, card numbers, expiration dates, and security codes, although Social Security numbers were not impacted.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-42547

TPRM report: https://www.rankiteo.com/company/american-express

"id": "ame315072525",
"linkid": "american-express",
"type": "Breach",
"date": "1/2013",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Financial Services',
                        'name': 'American Express Travel Related Services '
                                'Company, Inc.',
                        'type': 'Company'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'card numbers',
                                              'expiration dates',
                                              'security codes']},
 'date_detected': '2013-01-15',
 'date_publicly_disclosed': '2013-08-23',
 'description': 'Unauthorized access to a payment processing service, '
                'potentially exposing account information of some Cardmembers '
                'including names, card numbers, expiration dates, and security '
                'codes.',
 'impact': {'data_compromised': ['names',
                                 'card numbers',
                                 'expiration dates',
                                 'security codes'],
            'payment_information_risk': True},
 'references': [{'source': 'California Office of the Attorney General'}],
 'title': 'American Express Travel Related Services Company Data Breach',
 'type': 'Data Breach'}