"American Express Credit Cards Exposed in Vendor Data Breach"

American Express recently started warning customers that credit cards were exposed in a third-party data breach after one of its service providers was hacked.  In a data breach notification filed with the state of Massachusetts, American Express said that the breach occurred at one of its service providers used by their travel services division, American Express Travel Related Services Company.  The company said that the account information of some of their Card Members, including account information, may have been involved.  The company noted that this incident did not compromise American Express owned or controlled systems.  The breach has led to customers' American Express Card account numbers, names, and card expiration data being accessed by the hackers.  It is currently unclear how many customers were impacted, what service provider was breached, and when the attack occurred.  American Express advises customers to review their account statements over the next 12 to 24 months and report any suspicious behavior.  The company also suggests customers enable instant notifications via the American Express mobile app to receive notifications about fraud alerts and when purchases are made.

BleepingComputer reports: "American Express Credit Cards Exposed in Vendor Data Breach"