Home Services About Contact Recent Trends Get Started
← Back to Recent Trends
Threat Brief Jun 2, 2026 3 min read

Harvest Now, Decrypt Later: Why Your Encrypted Data Is Already at Risk

The most dangerous attack against your encryption isn't happening in the future. It's happening right now — silently, patiently, and against data you assumed was safe.

Most security conversations about quantum computing sound comfortably distant. “Cryptographically relevant quantum computers are years away,” the reasoning goes, “so post-quantum migration can wait.” That logic contains a fatal flaw — and adversaries are exploiting it today.

The threat is called Harvest Now, Decrypt Later (HNDL), sometimes “store now, decrypt later.” The premise is brutally simple: an attacker doesn’t need a quantum computer today to benefit from one tomorrow. They only need to capture your encrypted traffic now and hold onto it.

How the attack works

Modern encryption like RSA-2048 and elliptic-curve cryptography protects data in transit and at rest. It’s effectively unbreakable with today’s hardware. But the same mathematical problems that make these schemes strong — integer factorization and discrete logarithms — collapse under Shor’s algorithm running on a sufficiently large quantum computer.

So an adversary follows a two-stage plan:

  • Stage one — harvest. Intercept and archive encrypted data: VPN sessions, TLS traffic, database backups, intellectual property, diplomatic cables, health records. Storage is cheap, and the ciphertext is collected passively.
  • Stage two — decrypt. Once a cryptographically relevant quantum computer exists, replay the archive through Shor’s algorithm and recover the plaintext retroactively.

The data you encrypt today is only as safe as the day a quantum computer can break it. For anything with a long secrecy lifetime, that day has effectively already arrived.

Why “years away” is the wrong frame

Security experts estimate quantum machines capable of breaking RSA-2048 could arrive somewhere between 2030 and 2035. That feels safe until you ask one question: how long does your data need to stay secret?

If you handle records that must remain confidential for a decade or more — financial data, medical histories, trade secrets, government communications — then data you transmit in 2026 must survive until 2036. That window already overlaps the most conservative quantum timelines. In other words, sensitive data leaving your network today may be decrypted within its required secrecy lifetime.

Who is actually a target?

HNDL is not a generic, spray-and-pray attack. It’s a deliberate, resource-intensive strategy, which means it’s aimed at high-value, long-life data. You should treat yourself as a target if you hold:

  • Long-lived secrets — encryption keys, credentials, and root certificates rotated infrequently
  • Regulated data with statutory retention — healthcare, finance, insurance
  • Intellectual property and R&D that defines competitive advantage for years
  • Government, defense, or critical-infrastructure communications

What to do about it now

You can’t wait for a perfect quantum timeline before acting — by then the harvested data is already gone. A pragmatic response starts well before any quantum computer exists:

  1. Inventory your cryptography. You can’t protect what you can’t see. Build a cryptographic bill of materials: where keys live, which algorithms protect which data, and what the secrecy lifetime of each dataset is.
  2. Prioritize by data longevity. Rank systems by how long their data must stay secret. The longest-lived secrets migrate first.
  3. Adopt crypto-agility. Architect systems so algorithms can be swapped without re-engineering. This is the single highest-leverage investment you can make.
  4. Pilot post-quantum cryptography. The NIST-standardized algorithms — ML-KEM (Kyber) for key exchange and ML-DSA (Dilithium) for signatures — are ready for hybrid deployment today.

Crypto-agility is the real deliverable. The specific algorithm matters less than your ability to change it the day it’s broken.

Harvest Now, Decrypt Later turns the comfortable “quantum is years away” narrative on its head. The decryption is in the future; the theft is in the present. Organizations that internalize that distinction — and start their migration now — will be the ones whose data is still secret when the quantum era finally arrives.

Post-Quantum Cryptography HNDL
QS
QSECS Research Team
Post-Quantum Threat Intelligence

Ready to Pressure-Test Your Security Posture?

Book a no-obligation discovery call and let's map your quantum-readiness roadmap together.

Book a Discovery Call