HQ/EMEAFind out how we can help your business
American Express has issued a warning to its customers regarding the exposure of credit card information through a third-party merchant processor. The company, under the entity “American Express Travel Related Services Company,” filed a data breach notification in the state of Massachusetts, urging customers to be vigilant as their credit card details may have been compromised.
The breach originated from a third-party service provider enlisted by numerous merchants, who experienced unauthorised access to its system. While the company assures customers that their owned or controlled systems were not compromised, the breach resulted in the unauthorised access of account information for some card members, which include sensitive details such as names, American Express card account numbers, and card expiration data.
American Express has not disclosed key details about a recent data breach, citing its nondisclosure policy.
Despite the severity of the breach, American Express has yet to disclose specific details, including the number of affected customers, the identity of the merchant processor involved, and the precise timing of the attack. When pressed for more information, the company explained its policy of not disclosing details about business relationships and merchant partners.
Nevertheless, the affected company has taken swift action, notifying regulatory authorities and proactively reaching out to impacted customers. The company is emphatic in assuring affected cardholders that they will not be held responsible for any fraudulent charges resulting from the breach.
As a precautionary measure, the company advises customers to meticulously review their account statements over the next 12 to 24 months and promptly report any suspicious activities. To enhance security, the company recommends enabling instant notifications through the American Express mobile app, providing customers with real-time updates on potential fraud alerts and purchases.
The company also suggests that customers whose card information may have been compromised consider requesting a new card number. This advice aligns with the unfortunate reality that stolen credit card information is often sold on cybercrime marketplaces.
American Express remains committed to conducting a thorough investigation into the incident and pledges to adhere to all applicable laws and regulations to safeguard its customers against potential repercussions.
