Andesa Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Andesa Services regarding its recent data breach. The Andesa data breach involved sensitive personal identifiable information belonging to over 30,100 individuals.


Andesa is a finance management company providing policy lifecycle solutions for insurance and annuity companies. As a provider of policy lifecycle solution software, Andesa has cloud based solutions for managing transactions, billing and collections, client output processing, and death claim support services. Founded in 1983, Andesa began as a provider of company-owned life insurance and bank-owned life insurance policies. Today, Andesa has grown to offer a wide variety of services to some of the largest insurance and annuity companies in the United States. Headquartered in Allentown, Pennsylvania, Andesa employs approximately 180 individuals.


Recently, Andesa discovered that it had experienced a data breach in which the sensitive personal identifiable information in its systems may have been accessed. Through its investigation, Andesa determined that an unauthorized actor may have accessed this sensitive information through a vulnerability in the MOVEit file sharing platform between May 30 and May 31, 2023. On October 23, 2023, Andesa began contacting individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number

If you received a breach notification letter from Andesa Services:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the Andesa data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by Andesa Services;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: