Texas gun store, Mister Guns, is notifying 21,225 people of a data breach following unauthorized access to its systems in November 2025. Ransomware gang Securotrop claimed an attack at the time, alleging to have stolen 290 GB of data.
According to Mister Guns’ notification, the following data was included within the files that were removed from its network:
- Full name
- Social security number
- Date of birth
- Driver’s license number
- Concealed handgun license
- License to carry
- Passport number
- Military identification card and/or identification card
- Permanent resident card
- Private security registration
While the notice does state that there is “no evidence that any of your information has been misused as a direct result of this incident,” there is no mention of giving individuals access to free credit monitoring services, as is commonplace in these types of breaches.
Mister Guns hasn’t confirmed Securotrop’s claims, whether or not a ransom was demand and/or paid, or how hackers infiltrated its systems. Comparitech has contacted Mister Guns for more information and will update this article if we receive a response.
Who is Securotrop?
Securtrop first started adding victims to its data leak site in August 2025. Since then, we’ve noted 38 attacks via the group with two of these attacks being confirmed by the entities involved.
Last month, US manufacturer Structural Component Systems, Inc., also confirmed a data breach following a cyber attack in 2025. Its systems were breached in August 2025, with Securotrop alleging that it had stolen 1.219 TB of data. The total number of people impacted in this attack isn’t known.
Securotrop operates a Ransomware-as-a-Service (RaaS) model and is said to operate within the Qilin network. While it uses the Qilin network and its code, it still publishes its own data leak site. Like most gangs, it uses a double-extortion tactic but appears to focus on data theft by carefully examining the data it exfiltrates from organizations.
So far this year, Securotrop has added four victims to its site — none of which have been confirmed yet.
Ransomware attacks on US retailers
In 2025, we noted 31 confirmed attacks on US retailers with over 765,000 records breached across these attacks. This breach at Mister Guns is now the third-largest ransomware attack on a US retailer in 2025, based on records affected. The largest are:
- Crossroads Trading Co., Inc. – 60,041 impacted following an attack in February 2025. Claimed by Qilin
- Heartland Recreational Vehicles – 25,185 impacted following an attack in January 2025. Claimed by RansomHub
So far this year, we’ve seen four confirmed attacks on US retailers. Three of these attacks were claimed by Qilin (Sakata Seed America, Inc., Kroll International, LLC, and O. Berk Company of New England LLC) and one by Akira (BUHLMANN North America LP).
We are also monitoring 207Â unconfirmed attacks on US retailers from 2025 and a further 90 from this year so far.
About Mister Guns
Located in Plano, Texas, Mister Guns was established in 2011. Today, it operates several stores and gun ranges.
