American Express warns customers of credit card data breach via third-party processor

American Express has issued a warning to its customers regarding a data breach involving their credit card information, which occurred through a third-party merchant processor. The breach, not attributed to American Express’s systems, exposed the account details of certain card members, including card numbers, names, and expiration dates.

The breach notification, filed with the state of Massachusetts under "American Express Travel Related Services Company," emphasizes that unauthorized access to the third-party service provider’s system led to the compromise of Card Member data. While American Express reassures that its systems remain uncompromised, they have initiated the notification process as a precautionary measure.

Although specific details such as the number of affected customers, the identity of the breached merchant processor, and the timeline of the attack remain undisclosed, American Express has affirmed its commitment to regulatory compliance and customer protection. The company has notified relevant regulatory authorities and is actively alerting impacted customers.

American Express assures customers they will not be held responsible for any fraudulent charges resulting from the breach. They advise affected Card Members to monitor their account statements diligently over the next 12 to 24 months and report any suspicious activity promptly.

Furthermore, American Express recommends enabling instant notifications through their mobile app to receive real-time alerts for fraud detection and purchase activities. In light of the breach, customers are encouraged to request a new card number to mitigate the risk associated with compromised card information.