AmericanExpress.com

A significant data breach occurred involving American Express customer information through a third party service provider. The incident was not a direct compromise of American Express internal systems but rather a breach at a merchant processor used by numerous travel service providers. This exposure led to the unauthorized access of card member names, account numbers, and other credit card details such as expiration dates. American Express notified affected customers and regulators, emphasizing that their core systems remained secure while monitoring for fraudulent activity on impacted accounts.