Cybercriminals aren’t waiting for the future — they’re stealing encrypted data right now. Their plan is simple: grab the data today and decode it later using powerful quantum computers. Experts call this the “harvest now, decrypt later” strategy. And it’s already happening on a large scale.
State-sponsored hackers and spy groups are quietly collecting massive amounts of encrypted information. Evidence shows they’re treating today’s uncrackable data like a long-term investment. Palo Alto researchers found that attackers steal both encrypted and unencrypted data without much distinction. Over 70% of ransomware attacks now involve stealing data before locking it down.
State-sponsored hackers are treating stolen encrypted data like a long-term investment — and they’re already cashing in.
Hackers are also moving faster than ever. Average break-in time has dropped to just 25 minutes, with data stolen within 72 minutes — four times faster than last year.
The key date experts worry about is called “Q-day.” That’s when quantum computers become powerful enough to break today’s encryption. Several cybersecurity firms predict this could happen before 2030. A mathematician at NIST, the U.S. government’s standards agency, confirmed that nation-states are likely already harvesting data for future cracking. Once Q-day arrives, nearly all stolen encrypted data could become readable.
The types of data at risk are wide-ranging. Medical records, financial information, government secrets, military strategies, and trade secrets are all being targeted. Personal information like biometrics and credentials could enable identity theft years from now. Corporate data like strategic plans could give competitors an unfair edge long after it was stolen.
Current encryption isn’t built to survive quantum computing. Asymmetric encryption, which protects most data traveling across the internet, could be broken almost instantly by a quantum machine. Today’s strongest protections, including 2048-bit keys, could be cracked in seconds.
Even blockchain ledgers aren’t safe from harvesting.
The risks are serious. Experts warn of surges in identity theft, financial fraud, and corporate espionage once quantum computers mature. Trust in financial institutions and private communications could collapse. The damage wouldn’t just affect individuals — it could shake entire systems that people rely on every day. Compounding this concern, conventional cryptography is expected by some experts to begin weakening as early as 2029, leaving little time for organizations to adapt. Probability estimates suggest that widespread public-key encryption vulnerabilities could affect a significant portion of global systems by 2034, underscoring the urgency for institutions to act well before that window closes.
References
- https://efe.com/english/science-and-technology/2026-04-13/quantum-cyberattack-threats-stolen-data/
- https://www.cyberdefensemagazine.com/the-impact-of-quantum-decryption/
- https://www.helpnetsecurity.com/2026/02/17/ronit-ghose-citi-institute-quantum-risk-financial-services/
- https://www.iansresearch.com/resources/all-blogs/post/security-blog/2025/04/17/tips-to-prevent-quantum-computing-encryption-data-breaches
- https://www.federalreserve.gov/econres/feds/files/2025093pap.pdf
- https://www.youtube.com/watch?v=wbn4Vo-bdls
- https://www.quantropi.com/are-hackers-harvesting-data-now-to-crack-later/
- https://duokey.com/en/resources/store-now-decrypt-later-the-quantum-threat
