HP Probes Alleged Poly Network Breach, Ransomware Group Claims 90GB Data Theft

HP, the U.S.-based technology firm, said it is looking into a possible data security breach following claims by the Everest ransomware group that it accessed Poly’s internal network and exfiltrated 90GB of sensitive data.

 

Poly, an HP subsidiary, is a leading unified communications brand offering video conferencing systems, VoIP phones, headsets, and collaboration devices designed for clear audio, HD video, and seamless integration with platforms like Microsoft Teams and Zoom.

 

Recently, the Everest ransomware group said it breached Poly’s infrastructure and listed it as a victim on its data leak site. The group claimed to be in possession of 90 GB of confidential data that included internal company documents, personal data and information of clients.

 

 

 

The Cybernews research team reviewed the screenshots shared by the ransomware group but noted that no substantial data samples were provided, a tactic the group has previously used with another victim, Iron Mountain. The screenshots appear to contain sensitive company details, such as directories listing C and C++ code files. While researchers could not confirm the nature of the data, it may be linked to source code or drivers used in Polycom firmware.

 

Acknowledging the claims made by the Everest ransomware group, an HP spokesperson said in a media statement that the company is aware of the allegations and is investigating them.

 

“HP is aware of claims made of a potential exploit of a legacy Polycom environment. We are investigating these claims, and there is no evidence that HP’s environment or HP customer data was compromised. The security of our customers is a top priority, and we encourage all our customers to keep their systems up to date,” HP spokesperson added.

 

Earlier this week, Everest ransomware group said it breached Iron Mountain’s infrastructure and listed it as a victim on its data leak site. The group claimed to be in possession of 1.4 TB of confidential data that included “a variety of personal documents and information of clients.”