United States
Government
Access for Sale
Alleged Full Texas Parks and Wildlife Database Offered for Sale After Confirmed Breach of 3.1 Million Records
A threat actor using the alias Shadowreaper is advertising the sale of what they claim is a complete database exfiltration from the Texas Parks and Wildlife Department (TPWD), listing around 3.13 million records at prices up to about $8,550 for the full set. The listing claims the data includes roughly 2.1 million “fullz” (name, date of birth, and Social Security number with address) and about 150,000 payment cards with CVV. These claims go beyond, and partly contradict, the agency's official disclosure. TPWD has confirmed a real breach affecting 3,087,721 people via a third-party license vendor, but states the exposed data was limited to driver's license information, passport numbers, emails, phone numbers, and addresses, and that Social Security numbers, dates of birth, and credit-card data were not obtained. The listing's financial and SSN claims are unverified and disputed by the official findings.
USA▣Post details
United States (Texas)!Confirmed vs claimed
- ~3.09M people affectedConfirmed
- Driver's license infoConfirmed
- Passport numbersConfirmed
- Email, phone, addressConfirmed
- SSN + DOB “fullz”Claimed
- ~150K cards with CVVClaimed
- Donor & transaction dataClaimed
- License / permit detailsClaimed
◱Screenshot(s)
⚠Potential impact
The confirmed breach is serious on its own: driver's license and passport numbers, unlike passwords, cannot be reset and are highly valuable for identity theft, synthetic-identity fraud, and targeted phishing, and they were exposed alongside contact details and home addresses for over three million people. Affected individuals should enroll in the free credit monitoring TPWD is offering through Kroll (enrollment deadline September 14, 2026) and place credit freezes with the major bureaus. Separately, this seller's claims that the dataset also contains Social Security numbers, dates of birth, and full payment cards with CVV would, if true, escalate the situation to a worst-case financial-fraud scenario, but those specific claims contradict TPWD's official statement that such data was not taken. Inflated or fabricated “fuller” listings are a common opportunistic response to a widely publicized breach, so the financial and SSN claims should be treated with skepticism pending evidence. No records, identifiers, payment instructions, or seller contact details are reproduced here.
iStatus
Breach confirmed, listing disputedTPWD has publicly confirmed a breach of this scale through a third-party license vendor, with public disclosure on June 18, 2026. However, this sale listing and its claim to include SSNs and payment-card data are unverified and exceed what the agency says was obtained; the seller's financial claims may be exaggerated or fraudulent. The sample/validation details, the purchase pathway, and the seller's contact handle are not reproduced here.
DARK WEB INFORMER - THREAT INTELLIGENCE
