The California Office of the Attorney General reported on July 21, 2015, that American Express Travel Related Services Company, Inc. experienced a data breach on February 15, 2011, involving unauthorized access to a merchant's website, potentially exposing American Express Card account numbers, names, and other Card information. The breach did not impact Social Security numbers or show any unauthorized activity on the affected accounts.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-57108
TPRM report: https://www.rankiteo.com/company/american-express
"id": "ame446072625",
"linkid": "american-express",
"type": "Breach",
"date": "2/2011",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Financial Services',
'name': 'American Express Travel Related Services '
'Company, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'type_of_data_compromised': ['American Express Card account '
'numbers',
'names',
'other Card information']},
'date_detected': '2011-02-15',
'date_publicly_disclosed': '2015-07-21',
'description': "Unauthorized access to a merchant's website, potentially "
'exposing American Express Card account numbers, names, and '
'other Card information.',
'impact': {'data_compromised': ['American Express Card account numbers',
'names',
'other Card information']},
'references': [{'date_accessed': '2015-07-21',
'source': 'California Office of the Attorney General'}],
'title': 'American Express Data Breach',
'type': 'Data Breach'}