Texas Parks & Wildlife Department Data Breach Exposes Millions of Driver's Licenses and Passport Numbers
The Texas Parks & Wildlife Department (TPWD) disclosed a data breach on June 18, 2026, affecting its license system vendor. The incident exposed personal information for over 3 million individuals, including driver's license information, passport numbers, email addresses, phone numbers, and residential addresses. The exact nature and timing of the security incident, and the vendor involved, were not specified, though conflicting reports exist regarding the exposure of Social Security numbers and dates of birth.
Signal context
First seen: Jun 18, 2026
Last updated: Jun 25, 2026
Status: Public signal
Key points
- Texas Parks & Wildlife Department (TPWD) disclosed the breach.
- The incident affected a third-party license system vendor.
- Over 3 million individuals were impacted.
Signal analysis
BetaIt helps compare this signal with other published signals without treating the labels as final determinations.
Likely country: 🇺🇸 United States
inferred from company domain
The feed marks multiple actor roles. Treat this as a review signal rather than a final attribution.
- Source type: outside the affected organization
- Source type: supplier or third-party involvement
Impact area: Confidentiality
Likely asset: User or customer data
- 1 signal in the same sector
- 93 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Texas govt data breach exposes over 3 million driver's licenses - Bleeping Computerhttps://www.bleepingcomputer.com/news/security/texas-govt-data-breach-exposes-over-3-million-drivers-licenses/Public source from bleepingcomputer.com.
Texas Parks & Wildlife data breach exposes millions of driver's licenses, passport numbers - SC Mediahttps://www.scmagazine.com/brief/texas-parks-wildlife-data-breach-exposes-millions-of-drivers-licenses-passport-numbersPublic source from scmagazine.com.
Hackers steal passport and driver's license data of 3 million Texans - Malwarebyteshttps://www.malwarebytes.com/blog/news/2026/06/hackers-steal-passport-and-drivers-license-data-of-3-million-texansPublic source from malwarebytes.com.
Related signals
Grouped by why the signal is relevant.
AgelessRx Data Breach Exposes Patient Health Information
AgelessRx, a telehealth platform specializing in longevity and anti-aging treatments, disclosed a data breach. An unauthorized actor gained access to certain help-desk tickets within the company's system between April 17 and April 22, 2026. The breach exposed sensitive patient health information, including names, dates of birth, health diagnoses or conditions, medications, and prescription details. The incident was reported to attorneys general on June 24, 2026, and notification letters to affected individuals began on June 23, 2026.
Insurity Customer Data Exposed in Klue Supply Chain Attack
Insurity, a leading provider of cloud-based software for insurance carriers, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
OneTrust Customer Data Exposed in Klue Supply Chain Attack
OneTrust, a privacy, security, and governance technology company, was among the organizations affected by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
Sprout Social Data Compromised in Klue Supply Chain Attack
Sprout Social, a social media management platform, was among the companies affected by the Klue supply chain attack. The incident led to unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Snyk Affected by Klue Supply Chain Data Breach
Developer security platform Snyk was impacted by the Klue supply chain attack, which led to unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.
Klue Data Breach Leads to Salesforce Customer Data Exposure
Market intelligence platform Klue experienced a data breach, uncovered on June 12, 2026, where attackers stole OAuth tokens used to access customer data from Salesforce. The Icarus group claimed responsibility, leaking business contacts, sales notes, and pricing details from multiple victims. The incident was widely reported on June 24, 2026.