The Everest ransomware group has claimed responsibility for a data breach involving systems associated with Polycom, a legacy enterprise communications brand now fully integrated into HP Inc.
According to statements posted on Everest’s dark web leak site, the group alleges it has obtained approximately 90 GB of internal data, described as a database and internal company documentation. The group claims the files originate from Polycom-related environments and has threatened to publish the data after a 9-day countdown if its demands are not met.
To support its claims, Everest has released a series of screenshots that it says demonstrate access to internal systems. The images appear to show internal file directories, engineering build environments, source code trees, software logs, and technical documentation linked to Polycom’s conferencing platforms, including RMX and RealPresence systems. The screenshots do not display customer personal data or sensitive user information.
The published material appears focused on product development, internal testing, and infrastructure components rather than consumer-facing services. No direct evidence of customer data exposure is shown in the screenshots.
About Polycom
Polycom has undergone multiple corporate transitions in recent years. The company was acquired by Plantronics in 2018, rebranded as Poly in 2019, and later acquired by HP Inc. in 2022. Since then, Poly’s products and services have been consolidated under the HP umbrella, with legacy Polycom and Poly domains (polycom.com) redirecting to HP-managed platforms (hp.com/us-en/poly.html).
At the time of writing, HP has not publicly commented on the ransomware group’s claims, and there has been no confirmation that a breach has occurred. As with other ransomware disclosures, the claims originate solely from the threat actor and have not been independently verified.
About Everest Ransomware
Everest ransomware was one of the most active ransomware groups in 2025, and it appears to be continuing that momentum in 2026. So far, the group has claimed attacks on major organizations, including McDonald’s India, Nissan, ASUS, Chrysler, Iberia Airlines, Under Armour, Petrobras, AT&T, Dublin Airport, and others.
Hackread contacted HP Inc. via official support channels on February 2, 2026. HP support acknowledged the inquiry and said they would check with the concerned team and get back with an update. No response had been received at the time of publication.