Incident in Expense on US2, EU2, Concur Cloud for Public Sector

After further investigation, the Incident Response Team (IRT) has determined that the breadth of impact for an ongoing investigation has exceeded our original understanding. Moving forward, incident communications will be posted on Concur Open. In the US2, EU2, and Concur Cloud for Public Sector Data Centers, customers using the American Express GL1025 file for credit card transaction feeds may have experienced issues with incorrect transaction labeling for transactions posted on or before September 2. While it was confirmed that American Express deployed a fix on September 2, preventing further impact, incident communications will continue until clean up actions have been executed. Affected users may see payment transactions displayed to employees either with no vendor name or with an "unknown" vendor, while certain fee types may be incorrectly classified as cash advances. A potential workaround for this issue has been identified. Credit card administrators for the impacted customers may be able to hide the impacted transactions or reach out to the Concur support rep so that they can hide them on your behalf. It is also recommended to create an audit rule to prevent the inclusion of impacted transactions in expense reports. The Incident Response Team (IRT) met with American Express vendor partners. It has been confirmed that root cause was determined, and a fix was deployed on September 2, preventing further impact. The Incident Response Team is collaborating with vendor teams to determine the most effective clean up actions. Our next scheduled update will be at or before 9:00PM UTC on 05 September.