In a first, a ransomware family is confirmed to be quantum-safe
Summary
Ars Technica reports that the Kyber ransomware family claims to use post-quantum cryptography (ML-KEM) to secure its encryption keys. Rapid7 reversed engineered a Windows variant using ML-KEM1024, while a VMware variant reportedly uses RSA-4096, suggesting the PQC label is largely marketing. The article argues that practical security benefits are limited today, since quantum attacks are not imminent and AES remains the workhorse encryption, highlighting the risk of overestimating “quantum-safe” claims in incident response and defense planning.