{"id":3584,"date":"2025-02-18T18:26:00","date_gmt":"2025-02-18T18:26:00","guid":{"rendered":"https:\/\/sectigostore.com\/blog\/?p=3584"},"modified":"2025-02-14T18:32:05","modified_gmt":"2025-02-14T18:32:05","slug":"harvest-now-decrypt-later-smb-prevention-methods","status":"publish","type":"post","link":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/","title":{"rendered":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks)"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">Quantum computing doesn\u2019t mean the end of the world, but its eventual arrival will threaten the security of your data. There are steps you can take to help harden your business against harvest now, decrypt later (HNDL) attacks<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">A recent episode of <a href=\"https:\/\/www.sectigo.com\/resource-library\/root-causes-464-defending-against-harvest-and-decrypt\">Sectigo\u2019s \u201cRoot Causes\u201d podcast<\/a> explored the enterprise threat <a href=\"https:\/\/www.thesslstore.com\/blog\/harvest-now-decrypt-later-hndl\/\">harvest now, decrypt later (HNDL)<\/a>. This attack method involves collecting encrypted data now (harvesting) to hold onto it to \u201cbreak\u201d (decrypt) the encryption later once quantum computers become more readily available.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Understandably, discussions about harvest now, decrypt later attacks typically focus on enterprises. However, small and mid-size businesses also collect and store data, and they typically don\u2019t have as many resources as their larger business counterparts. So, this makes them potentially easier prey for HNDL attacks.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So, what does this threat mean for small and mid-size businesses? And what can you do to protect your data against harvest now, decrypt later attacks?<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Breaking Down the Harvest Now, Decrypt Later Threat for SMBs<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">In a nutshell, a harvest now, decrypt later attack is a way for bad guys to collect your data now and sit on it until later (i.e., when the quantum-based technology becomes available later that allows them to decrypt it). The data they collect now could be exposed within the next few years or potentially a decade from now. This is why this attack method is also known as retrospective encryption.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"528\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow-1024x528.jpg\" alt=\"An illustration demonstrating how a harvest now, decrypt later attack works over time\" class=\"wp-image-3590\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow-1024x528.jpg 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow-300x155.jpg 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow-560x289.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow-940x484.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-example-shadow.jpg 1471w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\"><em>Image caption: A basic illustration demonstrating how a harvest now, decrypt later attack works and the threat it poses to everyone from small and mid-size businesses to large enterprises (and their customers) over time.<\/em><\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Data harvesting could be happening right under your nose as we speak. This means your company\u2019s most sensitive data \u2014 customers\u2019 personally identifiable information (PII), employees\u2019 PII, proprietary data, research, intellectual property, <em>everything<\/em> \u2014 is at risk of being compromised by cybercriminals who want to exploit it.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">All they have to do is play the waiting game\u2026 because the types of data they\u2019re after don\u2019t have a short shelf life.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Attackers Focus on Collecting the Most Valuable (Evergreen) Data Possible<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">While it\u2019s true that harvest now, decrypt later attackers are collecting massive amounts of data, not all data will remain useful over time. &nbsp;For example, credit card numbers aren\u2019t necessarily useful because they change every few years, and cardholders can cancel their cards and have new ones issued relatively easily if there\u2019s concern about a potential compromise.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is why bad guys seek the types of data that retain perpetual value and have long lifespans. A few examples include:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Customers or employees\u2019 Social Security\/national ID numbers<\/li>\n\n\n\n<li>Other types of personally identifiable information (PII)<\/li>\n\n\n\n<li>Intellectual property (proprietary product schematics, recipes, etc.)<\/li>\n\n\n\n<li>Government or military secrets<\/li>\n\n\n\n<li>Medical records<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Furthermore, storing massive quantities of data over time can rack up a pricey bill regarding storage, energy, hardware, etc. To keep costs to a minimum, bad guys must carefully evaluate and determine which data to target to get the most bang for their buck. They use contextual info to determine where to source the most valuable data.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For example, imagine an attacker figuring out how to identify the encrypted traffic transmitting to and from financial applications or the IP addresses of key employees within your organization (CEO, CFO, payroll officer, etc.). They\u2019ll be able to steal encrypted data that likely has high intrinsic value once decrypted.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Likewise, they\u2019re more likely to get more valuable evergreen data by targeting a small medical office or insurance company than, say, a bakery.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">7 Ways SMBs Can Sabotage Harvest Now, Decrypt Later Attacks<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Now that we know what harvest now, decrypt later attacks entail and which types of information bad guys are looking for, it\u2019s time to learn what steps you can take to secure your data against HNDL attackers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, there are the <a href=\"https:\/\/sectigostore.com\/blog\/cyber-security-basics-every-smb-should-know\/\">basic small business cybersecurity measures<\/a> you can implement. But you must take things further to mitigate the threats posed by quantum computing capabilities in the future.<\/p>\n\n\n\n<div class=\"wp-block-group has-background\" style=\"background-color:#d9d9d6\"><div class=\"wp-block-group__inner-container is-layout-constrained wp-block-group-is-layout-constrained\">\n<h3 class=\"wp-block-heading\"><strong>Related Resources<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/sectigostore.com\/blog\/top-25-recommendations-for-small-business-cyber-security\/\">Top 25 Recommendations for Small Business Cyber Security<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/sectigostore.com\/blog\/smbs-10-cyber-security-tips-that-make-you-a-tougher-target\/\">SMBs: 10 Cybersecurity Tips to Make You a Tougher Target<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/sectigostore.com\/blog\/5-smb-takeaways-from-the-nist-cybersecurity-framework-2-0\/\">5 SMB Takeaways from the NIST Cybersecurity Framework 2.0<\/a><\/li>\n<\/ul>\n<\/div><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Implement Quantum-Resistant Cryptography Wherever Possible<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Ultimately, the best way to combat quantum computing-related threats like harvest now, decrypt later attacks is to fight fire with fire. This means all organizations, regardless of size, need to begin implementing post-quantum key encapsulation and encryption algorithms in place now within their IT ecosystems.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Unfortunately, time is not on your side and the clock is ticking down:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/www.gartner.com\/en\/articles\/post-quantum-cryptography\">Gartner predicts<\/a> that quantum computers will \u201crender traditional cryptography unsafe by 2029\u201d and that \u201cadvances in quantum computing will make asymmetric cryptography unsafe and by 2034 fully unbreakable.\u201d<\/li>\n\n\n\n<li><a href=\"https:\/\/www.quandela.com\/technology\/roadmap\/\">Quandela has announced its Quantum Roadmap<\/a>, which outlines plans to launch \u201cgeneral purpose quantum computing libraries\u201d and assemble \u201clarge-sale, error-corrected quantum computers\u201d by 2028.<\/li>\n\n\n\n<li>In August 2024, the National Institute of Standards and Technology (NIST) released its first three <a href=\"https:\/\/www.thesslstore.com\/blog\/nist-pqc-standards-are-out-where-do-we-go-from-here\/\">PQC standards<\/a>. \u00a0<\/li>\n\n\n\n<li>In November 20204, the National Institute of Standards and Technology (NIST) set a deadline to <a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/ir\/2024\/NIST.IR.8547.ipd.pdf\">deprecate multiple cryptographic algorithms by 2030<\/a>. They\u2019ll be disallowed entirely starting in 2035. \u00a0<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><\/h2>\n\n\n\n<div class=\"wp-block-media-text is-stacked-on-mobile has-background\" style=\"background-color:#d9d9d6\"><figure class=\"wp-block-media-text__media\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"536\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1024x536.jpg\" alt=\"A screenshot of the Sectigo Certificate Manager dashboard\" class=\"wp-image-3552 size-full\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1024x536.jpg 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-300x157.jpg 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-560x293.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1536x804.jpg 1536w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-940x492.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm.jpg 1600w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure><div class=\"wp-block-media-text__content\">\n<h2 class=\"wp-block-heading has-text-color has-link-color wp-elements-c9ead037cde497c1a15c9be9c3a9c909\" style=\"color:#00b373\">Simplify Digital Certificate Management with Sectigo Certificate Manager<\/h2>\n\n\n\n<p class=\"has-text-color has-link-color has-medium-font-size wp-elements-50e794a370fb4d3de38995e9a00bd4ef wp-block-paragraph\" style=\"color:#041c2c\">Sectigo Certificate Manager is an all-in-one platform that streamlines certificate management and scales with your business. It allows you to supplement or upgrade your existing private CA capabilities and integrates directly with many third-party applications.  <\/p>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button is-style-fill\"><a class=\"wp-block-button__link has-white-color has-text-color has-background has-link-color wp-element-button\" href=\"https:\/\/sectigostore.com\/enterprise\/sectigo-certificate-manager\" style=\"background-color:#00b373\">Learn More<\/a><\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n<\/div><\/div>\n\n\n\n<h4 class=\"wp-block-heading\">1. Ensure Your Organization\u2019s Web Clients Are Using Hybrid Algorithms<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">One easy way to do this is to ensure that your employees\u2019 web browsers are using hybrid key encapsulation mechanisms (i.e., <a href=\"https:\/\/csrc.nist.gov\/pubs\/fips\/203\/final\">ML-KEM768<\/a>) to secure data transmissions. This is a quick fix that adds another layer of security to your company\u2019s data transmissions by making it so that data is encrypted using this PQC hybrid key agreement algorithm whenever compatible TLS 1.3 connections are available.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In Google Chrome, you can implement it by<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>entering <strong>chrome:\/\/flags<\/strong> in your browser address bar and hitting <strong>Enter<\/strong>,<\/li>\n\n\n\n<li>typing <strong>TLS 1.3<\/strong> in the Search Flags field at the top, and<\/li>\n\n\n\n<li>enabling <strong>Use ML-KEM in TLS 1.3<\/strong> in the dropdown menu.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">(NOTE: This should already be done by default if your Chrome browser is up to date, as <a href=\"https:\/\/security.googleblog.com\/2024\/09\/a-new-path-for-kyber-on-web.html\">Chrome implemented the change by default in Chrome 131<\/a>.)<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"622\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow-1024x622.jpg\" alt=\"A screenshot from Google's flags selection menu\" class=\"wp-image-3588\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow-1024x622.jpg 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow-300x182.jpg 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow-560x340.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow-940x571.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/enable-ml-kem-tls-13-chrome2-v2-shadow.jpg 1160w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\"><em>Image caption: A screenshot captured on Google Chrome\u2019s chrome:\/\/flags menu.<\/em><\/figcaption><\/figure>\n\n\n\n<h4 class=\"wp-block-heading\">2. Ensure Your Domain Supports PQC Hybrid Algorithms<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">If your company is using Cloudflare to serve your domain, then you\u2019ll be happy to know that the company has enabled the ML-KEM768 hybrid PQC key agreement algorithm on its servers for <a href=\"https:\/\/sectigostore.com\/blog\/tls-version-1-3-what-to-know-about-the-latest-tls-version\/\">TLS 1.3<\/a> traffic.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"847\" height=\"1024\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow-847x1024.jpg\" alt=\"A screenshot conveying Cloudflare Research's PQC Key Agreement related information\" class=\"wp-image-3587\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow-847x1024.jpg 847w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow-248x300.jpg 248w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow-560x677.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow-940x1136.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/cloudflare-pqc-prevent-harvest-now-decrypt-later-shadow.jpg 1117w\" sizes=\"auto, (max-width: 847px) 100vw, 847px\" \/><figcaption class=\"wp-element-caption\"><em>Image caption: A screenshot from Cloudflare Research\u2019s PQC Key Agreement page.<\/em><\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Research from Cloudflare shows that the <a href=\"https:\/\/radar.cloudflare.com\/adoption-and-usage?dateRange=52w#post-quantum-encryption-adoption\">adoption of post-quantum encryption in HTPS request traffic<\/a> has jumped from 18.4% on Feb. 1, 2024 to 32.9% on Feb. 1, 2025.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">3. Test Your PQC Readiness with Sectigo\u2019s PQC Labs Sandbox<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Sectigo, in partnership with Crypto4A, recently launched <a href=\"https:\/\/www.sectigo.com\/quantum-labs\">Sectigo PQC Labs<\/a>. This sandbox platform, equipped with Crypto4A\u2019s quantum-safe HSM, gives organizations a way to generate and test PQC digital certificates and keys in a secure environment. It also provides a wealth of educational tools and resources relating to strategic PKI integration. &nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Here\u2019s a quick example of what it looks like once you\u2019ve created a test PQC digital certificate:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"522\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-1024x522.png\" alt=\"A screenshot from Sectigo PQC Labs that shows what it looks like when you generate a test certificate\" class=\"wp-image-3586\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-1024x522.png 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-300x153.png 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-560x285.png 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-1536x782.png 1536w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-2048x1043.png 2048w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/sectigo-pqc-labs-pqc-certificate-940x479.png 940w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\"><em>Image caption: A screenshot captured in the Sectigo PQC Labs dashboard after generating a test certificate.<\/em><\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Preparing your business for quantum computing is a must, and crypto-agility should be at the heart of your organization\u2019s PQC initiatives.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Inventory Your Cryptographic Assets and Capabilities<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, before you can adopt PQC, you first need to know exactly what cryptographic assets, tools, and capabilities exist within your IT ecosystem. In order to <a href=\"https:\/\/sectigostore.com\/blog\/what-is-pki-a-laymans-guide-to-public-key-infrastructure\/\">secure your PKI environment<\/a> and IT ecosystem as a whole, then everything must be accounted for.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">4. Ensure You\u2019re Running Hardware and Systems That Can Support Hybrid Algorithms<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">It\u2019s not uncommon to find small businesses running legacy systems. This can include everything from servers and hardware security modules (HSMs) to firewalls and routers. For example, <a href=\"https:\/\/www.datacenterfrontier.com\/cloud\/article\/11427600\/sturdier-servers-cloud-platforms-say-servers-living-longer-saving-billions\">a server\u2019s \u201cuseful life\u201d is generally viewed as three to five years<\/a>, although <a href=\"https:\/\/eridirect.com\/blog\/2024\/01\/the-lifecycle-of-servers-knowing-when-and-how-to-decommission\/\">some businesses are known to run servers for 10-20 years<\/a>.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But running systems with long service lifespans simultaneously is a great and terrible thing. We get it \u2014 servers are costly investments that are a pain in the patootie to upgrade due to the time and migration costs, and as a small or mid-size business owner, you want to save money. But if you\u2019re running outdated systems that aren\u2019t receiving updates and aren\u2019t capable of supporting PQC hybrid algorithms, then you\u2019re asking for trouble.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is why it\u2019s crucial to incorporate quantum-safe capabilities into your hardware and system upgrade plans. As technology continues to evolve and each day brings us one step closer to mainstream quantum computing capabilities, traditional HSMs and other solutions no longer cut it. Use your upgrade cycle to bring your organization\u2019s security up to snuff with PQC-capable hardware and systems.<\/p>\n\n\n\n<p class=\"has-background wp-block-paragraph\" style=\"background-color:#d9d9d6\"><strong>Related resource:<\/strong> <a href=\"https:\/\/sectigostore.com\/blog\/small-business-cyber-security-plan-template\/\">Up Your Game with this Small Business Cyber Security Plan Template<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you\u2019re using third parties\u2019 hardware and systems, then carefully assess each vendor\u2019s PQC readiness and capabilities. If quantum readiness isn\u2019t even a blip on their radar, it\u2019s a good idea to find another vendor.&nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">5. Get Visibility of Your Entire PKI Ecosystem and Inventory Everything<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">In order to adopt PQC, you first need to know exactly what cryptographic assets and tools exist within your IT ecosystem that must be secured and accounted for. This includes virtually everything within your public key infrastructure (PKI) environment:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Digital certificates and their corresponding keys (noting their sizes, types, locations, which ones require quantum-resistant algorithms, etc.)<\/li>\n\n\n\n<li>Key storage solutions and key management systems<\/li>\n\n\n\n<li>Which cryptographic schemes (encryptions, digital signatures, etc.) and security protocols are in use<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/sectigostore.com\/enterprise\/sectigo-certificate-manager\">Sectigo Certificate Manager<\/a> (SCM) offers Discovery and Visibility capabilities that enable you to identify all of the digital certificates within your landscape. This all-in-one certificate management tool allows you to securely manage your PKI certificates in a single pane of glass.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><\/h2>\n\n\n\n<div class=\"wp-block-media-text is-stacked-on-mobile has-background\" style=\"background-color:#d9d9d6\"><figure class=\"wp-block-media-text__media\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"536\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1024x536.jpg\" alt=\"A screenshot of the Sectigo Certificate Manager dashboard\" class=\"wp-image-3552 size-full\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1024x536.jpg 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-300x157.jpg 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-560x293.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-1536x804.jpg 1536w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm-940x492.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2024\/12\/sectigo-certificate-manager-dashboard-sm.jpg 1600w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure><div class=\"wp-block-media-text__content\">\n<h2 class=\"wp-block-heading has-text-color has-link-color wp-elements-c9ead037cde497c1a15c9be9c3a9c909\" style=\"color:#00b373\">Simplify Digital Certificate Management with Sectigo Certificate Manager<\/h2>\n\n\n\n<p class=\"has-text-color has-link-color has-medium-font-size wp-elements-50e794a370fb4d3de38995e9a00bd4ef wp-block-paragraph\" style=\"color:#041c2c\">Sectigo Certificate Manager is an all-in-one platform that streamlines certificate management and scales with your business. It allows you to supplement or upgrade your existing private CA capabilities and integrates directly with many third-party applications.  <\/p>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button is-style-fill\"><a class=\"wp-block-button__link has-white-color has-text-color has-background has-link-color wp-element-button\" href=\"https:\/\/sectigostore.com\/enterprise\/sectigo-certificate-manager\" style=\"background-color:#00b373\">Learn More<\/a><\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n<\/div><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Take Additional Steps to Secure Your Data Now to Keep It Secure Later<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\">6. Enable Perfect Forward Secrecy as Another Layer of Security<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/sectigostore.com\/blog\/mitigating-session-data-exposure-perfect-forward-secrecy-explained\/\">Perfect forward secrecy<\/a> (PFS) refers to a specific key agreement protocol set that keeps your secrets (i.e., keys) secret. The idea behind it is a two-pronged approach:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A new, unique key is generated for each session (even for two parties that have previously connected), and<\/li>\n\n\n\n<li>The generated keys must never be stored (This way, they can\u2019t be reused to secure future sessions).<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">This prevents data from being exposed at a later date, even if a server\u2019s private key gets compromised in the future.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PFS isn\u2019t a new concept \u2014 in fact, it\u2019s actually mandated by the TLS 1.3 protocol, which eliminates the use of RSA and traditional Diffie-Hellman (non-ephemeral) key exchange protocols in the TLS handshake. (<strong>Reminder<\/strong>: An ephemeral key = a unique, dynamic key.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So, the idea here is that by using a dynamic key for every session (rather than the server\u2019s traditional static private key) that doesn\u2019t get stored, you\u2019ll help to ensure that your previously transmitted communications remain secure even if future communications become compromised.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This differs from forward secrecy, which involves using a generated secret key that never gets exchanged directly but does get stored for use in future sessions.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"893\" height=\"911\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2023\/03\/perfect-forward-secrecy-vs-forward-secrecy.png\" alt=\"An illustration that demonstrates the different approaches with forward secrecy versus perfect forward secrecy\" class=\"wp-image-3148\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2023\/03\/perfect-forward-secrecy-vs-forward-secrecy.png 893w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2023\/03\/perfect-forward-secrecy-vs-forward-secrecy-294x300.png 294w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2023\/03\/perfect-forward-secrecy-vs-forward-secrecy-560x571.png 560w\" sizes=\"auto, (max-width: 893px) 100vw, 893px\" \/><figcaption class=\"wp-element-caption\"><em>Image caption: A basic set of illustrations that, together, demonstrate the difference between forward secrecy and perfect forward secrecy.<\/em><\/figcaption><\/figure>\n\n\n\n<h4 class=\"wp-block-heading\">7. Don\u2019t Hold onto Data That Your Company Doesn\u2019t Need<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Data is often viewed as one of the most valuable resources to businesses. However, storing excess data you don\u2019t actually need can be detrimental to your business and customers. Why? Because the more data you hold onto, the higher the risk that your data may get exposed over time.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is, in part, why many data privacy regulations \u2014 think of the <a href=\"https:\/\/gdpr-info.eu\/art-17-gdpr\/#:~:text=the%20personal%20data%20are%20no%20longer%20necessary%20in%20relation%20to%20the%20purposes%20for%20which%20they%20were%20collected%20or%20otherwise%20processed%3B\">European Union\u2019s General Data Privacy Regulation (GDPR)<\/a>, <a href=\"https:\/\/www.hhs.gov\/hipaa\/for-professionals\/faq\/575\/what-does-hipaa-require-of-covered-entities-when-they-dispose-information\/index.html\">Health Insurance Portability and Accountability Act<\/a>, and the <a href=\"https:\/\/docs-prv.pcisecuritystandards.org\/PCI%20DSS\/Standard\/PCI-DSS-v4_0_1.pdf\">Payment Card Industry\u2019s Data Security Standard (PCI DSS)<\/a> \u2014 specify that businesses should properly (i.e., securely and safely) destroy any excess data they don\u2019t need to carry out a service.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Harvest Now, Decrypt Later Isn\u2019t Just a \u201cTomorrow\u201d Problem<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The reality is that HNDL attacks are happening <em>now<\/em>, and your sensitive data is at risk of future compromise once commercial quantum computers make their mainstream debut. The longer you wait to increase your <a href=\"https:\/\/www.nccoe.nist.gov\/sites\/default\/files\/2023-12\/pqc-migration-nist-sp-1800-38b-preliminary-draft.pdf\">PQC readiness<\/a>, the more time cybercriminals have to steal your encrypted data.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As a small\/midsize business owner or IT admin, adopting quantum-resistant cryptography into your organization\u2019s IT ecosystem likely hasn\u2019t been at the top of your priorities list. But knowing that your business\u2019s data is vulnerable to harvest now, decrypt later attacks by relying on traditional cryptographic algorithms that will be broken by quantum computers should serve as a real eye-opener. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We hope that this article has provided you with some actionable ways that you can start preparing for quantum computers now to stay ahead of the curve.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Quantum computing doesn\u2019t mean the end of the world, but its eventual arrival will threaten the security of your data. There are steps you can take to help harden your&#8230;<\/p>\n","protected":false},"author":8,"featured_media":3593,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","tve_updated_post":"","tve_custom_css":"","tve_user_custom_css":"","tve_globals":{},"tcb2_ready":0,"tcb_editor_enabled":0,"tve_landing_page":"","_tve_header":"","_tve_footer":""},"categories":[9],"tags":[314,311,312,313],"class_list":["post-3584","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-encryption","tag-data-security","tag-harvest-now-decrypt-later","tag-hndl","tag-quantum-threats","post-with-tags"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights<\/title>\n<meta name=\"description\" content=\"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small &amp; mid-size businesses and how you can fight them.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights\" \/>\n<meta property=\"og:description\" content=\"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small &amp; mid-size businesses and how you can fight them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/\" \/>\n<meta property=\"og:site_name\" content=\"InfoSec Insights\" \/>\n<meta property=\"article:published_time\" content=\"2025-02-18T18:26:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"1000\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Casey Crane\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Casey Crane\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"31 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/\"},\"author\":{\"name\":\"Casey Crane\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\"},\"headline\":\"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks)\",\"datePublished\":\"2025-02-18T18:26:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/\"},\"wordCount\":2153,\"image\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/harvest-now-decrypt-later-feature2.jpg\",\"keywords\":[\"data security\",\"harvest now decrypt later\",\"HNDL\",\"quantum threats\"],\"articleSection\":[\"Encryption\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/\",\"name\":\"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/harvest-now-decrypt-later-feature2.jpg\",\"datePublished\":\"2025-02-18T18:26:00+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\"},\"description\":\"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small & mid-size businesses and how you can fight them.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#primaryimage\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/harvest-now-decrypt-later-feature2.jpg\",\"contentUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/harvest-now-decrypt-later-feature2.jpg\",\"width\":1600,\"height\":1000},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/harvest-now-decrypt-later-smb-prevention-methods\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/\",\"name\":\"InfoSec Insights\",\"description\":\"SectigoStore.com Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\",\"name\":\"Casey Crane\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"caption\":\"Casey Crane\"},\"description\":\"Casey is a writer and editor with a background in journalism, marketing, PR and communications. She has written about cyber security and information technology for several industry publications, including InfoSec Insights, Hashed Out, Experfy, HackerNoon, and Cybercrime Magazine.\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights","description":"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small & mid-size businesses and how you can fight them.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/","og_locale":"en_US","og_type":"article","og_title":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights","og_description":"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small & mid-size businesses and how you can fight them.","og_url":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/","og_site_name":"InfoSec Insights","article_published_time":"2025-02-18T18:26:00+00:00","og_image":[{"width":1600,"height":1000,"url":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg","type":"image\/jpeg"}],"author":"Casey Crane","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Casey Crane","Est. reading time":"31 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#article","isPartOf":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/"},"author":{"name":"Casey Crane","@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c"},"headline":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks)","datePublished":"2025-02-18T18:26:00+00:00","mainEntityOfPage":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/"},"wordCount":2153,"image":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#primaryimage"},"thumbnailUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg","keywords":["data security","harvest now decrypt later","HNDL","quantum threats"],"articleSection":["Encryption"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/","url":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/","name":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks) - InfoSec Insights","isPartOf":{"@id":"https:\/\/sectigostore.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#primaryimage"},"image":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#primaryimage"},"thumbnailUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg","datePublished":"2025-02-18T18:26:00+00:00","author":{"@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c"},"description":"Learn what a harvest now, decrypt later (retrospective decryption) attack means for small & mid-size businesses and how you can fight them.","breadcrumb":{"@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#primaryimage","url":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg","contentUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2025\/02\/harvest-now-decrypt-later-feature2.jpg","width":1600,"height":1000},{"@type":"BreadcrumbList","@id":"https:\/\/sectigostore.com\/blog\/harvest-now-decrypt-later-smb-prevention-methods\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/sectigostore.com\/blog\/"},{"@type":"ListItem","position":2,"name":"What \u2018Harvest Now, Decrypt Later\u2019 Means for SMBs (and 7 Steps to Prevent These Attacks)"}]},{"@type":"WebSite","@id":"https:\/\/sectigostore.com\/blog\/#website","url":"https:\/\/sectigostore.com\/blog\/","name":"InfoSec Insights","description":"SectigoStore.com Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/sectigostore.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c","name":"Casey Crane","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","caption":"Casey Crane"},"description":"Casey is a writer and editor with a background in journalism, marketing, PR and communications. She has written about cyber security and information technology for several industry publications, including InfoSec Insights, Hashed Out, Experfy, HackerNoon, and Cybercrime Magazine."}]}},"_links":{"self":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts\/3584","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/comments?post=3584"}],"version-history":[{"count":0,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts\/3584\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/media\/3593"}],"wp:attachment":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/media?parent=3584"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/categories?post=3584"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/tags?post=3584"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}