Blog
Data Now Leaves the Building in 72 Minutes. The Quantum Timeline Just Got Compressed Alongside It.

Palo Alto Networks' Unit 42 released its 2026 Global Incident Response Report earlier this year with a data point that should be on every security dashboard. Among the fastest quartile of intrusions in 2025, adversaries reached data exfiltration in 72 minutes. In 2024, the same metric was 285 minutes. In one year, the speed of theft accelerated by nearly four times. Twenty-two percent of all incidents reached exfiltration in under one hour, up from 19 percent the year before.
This acceleration is not just a defensive problem for the moment of the breach. It is a compounding problem for the quantum-era threat model. Every minute of accelerated data theft translates into more encrypted records leaving enterprise environments, into adversary archives, under cryptography that quantum computers will eventually break.
The Speed Asymmetry That Should Concern Every Security Team
The Unit 42 report makes the pattern explicit. Attackers are exfiltrating earlier in the attack chain and collecting large volumes of data before sorting through it. That behavior aligns precisely with the harvest now, decrypt later threat model. Adversaries do not need to selectively identify high-value data during the breach itself. They can capture broad swaths of encrypted material now, store it, and process it later, including with future quantum decryption capabilities.
The defensive posture required to prevent this is uncomfortable to plan for. Traditional enterprise security is built around detection and response. Detect the intrusion, contain the movement, prevent the exfiltration. But when the intrusion-to-exfiltration window is 72 minutes, and the median time to identify and contain a breach in most sectors is measured in weeks or months, the response function is not keeping pace with the attack function.
The Cloud Security Alliance's "AI Vulnerability Storm" report, co-authored by former CISA Director Jen Easterly, cryptographer Bruce Schneier, and security researcher Katie Moussouris, framed the broader shift. The window between vulnerability disclosure and working exploit has collapsed to under one day. Every organization, the report concluded, should begin a 90-day preparedness plan immediately.
The AI-orchestrated cyberattack disclosed by Anthropic in November was the concrete demonstration. A Chinese state-sponsored actor manipulated an agentic AI system into performing autonomous reconnaissance, exploit development, credential harvesting, and data exfiltration against approximately 30 high-value targets. The AI executed 80 to 90 percent of the tactical work at thousands of requests per second, an operational tempo that human defensive teams cannot match.
Speed of theft, speed of vulnerability weaponization, and speed of autonomous attack execution are all accelerating in parallel. Enterprise cryptographic infrastructure was not designed for any of these speeds.
The Volume Problem That Ties Speed to the Quantum Timeline
The healthcare sector illustrates the compounding effect. Comparitech researchers documented 410 confirmed ransomware attacks against healthcare organizations in the first half of 2026 alone, on pace to significantly exceed 2025 totals. The FBI IC3 2024 Annual Report placed healthcare at the top of ransomware target sectors with 460 total incidents that year. Verizon's 2025 Data Breach Investigations Report logged 1,710 healthcare incidents with 1,542 confirmed disclosures.
Every one of those incidents involved data exfiltration. Every exfiltrated record is now encrypted under RSA, elliptic curve, or other asymmetric algorithms with a known and finite operational lifespan. Patient records cannot be rotated. Genomic data is immutable. Social Security numbers, insurance histories, and clinical files carry confidentiality requirements measured in decades.
Layer the acceleration onto the volume. Adversaries capturing data at four-times the speed of a year ago, across sectors experiencing record numbers of confirmed incidents, are collectively building archives that will remain vulnerable well into the quantum decryption era. The White House Executive Order 14411, signed June 22, formalized the federal deadline of December 31, 2030 for adopting post-quantum cryptography on high-value assets. The Department of Defense released its own PQC strategy on June 24 mandating full department migration by 2031. The mandates exist because the archives already exist.
Where QVH Fits
The traditional response to speed asymmetry is to invest in faster detection and response. That response is necessary but not sufficient. It does not address the fact that already-exfiltrated data continues to accumulate quantum-era exposure long after the incident is closed.
The QVH platform was built around a different response. Rather than treating post-quantum migration as a future project separate from current breach response, the platform integrates the cryptographic foundation and the migration planning function into a single infrastructure layer.
Hardware roots of trust through the R1 Chip and EPI-QS Chip provide device-level cryptographic assurance with isolated key storage and tamper-resistant execution. PhotonFlux delivers hardware-grade entropy generation, which is essential given that no cryptographic algorithm, classical or post-quantum, can compensate for weak randomness at the source. The Enqrypta suite, including Forge and Source, integrates NIST-aligned post-quantum algorithms (FIPS 203, 204, and 205) into existing applications and APIs. Enqrypta Keystone provides unified key lifecycle management across distributed environments. EPI-QS Vault delivers object-level data protection that resists both classical and quantum decryption, directly addressing the harvest now, decrypt later exposure of data that may already have been captured.
Layered alongside the cryptographic foundation is the QVH AI layer, using a memory and knowledge-graph architecture to help enterprises map cryptographic dependencies across their environment. It sequences migration based on the actual structure of the enterprise rather than a static compliance checklist. It integrates AI and data infrastructure into the same map, which is essential given that AI is generating an expanding set of long-lived sensitive artifacts, model weights, embeddings, vector stores, and inference logs, that also need quantum-resilient protection.
The 72-minute exfiltration window is not going to get longer. Attackers will continue to accelerate. What can change is whether the data being captured is protected by cryptography that will still hold when quantum decryption matures.
Quantum Vision, Infrastructure for the Quantum Era.
Sources
Palo Alto Networks Unit 42, "2026 Global Incident Response Report" and Harvest Now, Decrypt Later Analysis (2026) https://www.paloaltonetworks.com/cyberpedia/harvest-now-decrypt-later-hndl
Cybersecurity Insiders, "Healthcare Ransomware Attacks First Half 2026" (Comparitech Analysis, July 2026) https://www.cybersecurity-insiders.com/
Anthropic, "Disrupting the first reported AI-orchestrated cyber espionage campaign" (November 14, 2025) https://www.anthropic.com/news/disrupting-AI-espionage
Cloud Security Alliance, "The AI Vulnerability Storm" (co-authored by Jen Easterly, Bruce Schneier, Katie Moussouris, April 2026) https://cloudsecurityalliance.org
FBI Internet Crime Complaint Center, "2024 Annual Report" https://www.ic3.gov
Verizon, "2025 Data Breach Investigations Report" https://www.verizon.com/business/resources/reports/dbir/
Security Magazine, "Harvest Now, Decrypt Later: Preparing for the Quantum Hangover" (February 25, 2026) https://www.securitymagazine.com/articles/102146-harvest-now-decrypt-later-preparing-for-the-quantum-hangover
The White House, Executive Order 14411, "Ushering in the Next Frontier of Quantum Innovation" (June 22, 2026) https://www.whitehouse.gov/presidential-actions/2026/06/ushering-in-the-next-frontier-of-quantum-innovation/
The Defense Post, "US Launches Plan to Secure Military Networks Against Quantum Threats" (June 24, 2026) https://thedefensepost.com/2026/06/24/us-plan-quantum-threats/
NIST, Post-Quantum Cryptography Standards (FIPS 203, 204, 205) https://www.nist.gov/pqc
NSA, CNSA 2.0 Commercial National Security Algorithm Suite https://media.defense.gov/2022/Sep/07/2003071834/-1/-1/0/CSA_CNSA_2.0_ALGORITHMS_.PDF
QVH Platform https://www.qvhinc.com/platform
QVH R1 Chip https://www.qvhinc.com/technology#product-r1-chip
QVH EPI-QS Chip https://www.qvhinc.com/technology#product-epiqs-chip
QVH PhotonFlux https://www.qvhinc.com/technology#product-photonflux
QVH Enqrypta Forge https://www.qvhinc.com/technology#product-enqrypta-forge
QVH Enqrypta Source https://www.qvhinc.com/technology#product-enqrypta-source
QVH Enqrypta Keystone https://www.qvhinc.com/technology#product-enqrypta-keystone
QVH EPI-QS Vault https://www.qvhinc.com/technology#product-epiqs-vault
Forward Looking Statement
This article contains forward-looking information within the meaning of applicable Canadian securities laws, including statements regarding the development of post quantum security infrastructure, anticipated industry migration toward post quantum cryptography, and the potential impact of evolving computational capabilities on cybersecurity frameworks.
Forward-looking information reflects management’s current expectations, estimates, projections, and assumptions as of the date of publication and is subject to known and unknown risks and uncertainties that could cause actual results to differ materially from those expressed or implied. Such risks include, but are not limited to, technological development risks, regulatory developments, adoption timelines for post-quantum standards, competitive factors, supply chain considerations, capital requirements, and general economic conditions.
Readers are cautioned not to place undue reliance on forward-looking information. Quantum Vision Holdings undertakes no obligation to update or revise forward looking information except as required by applicable securities laws.
more news

