For the first time, security researchers detect malware variants that utilize algorithms designed to resist future computers. The group behind the 'Kyber' ransomware leads this evolution, which experts describe as both a technical advancement and a tactic of psychological terror.
MADRID, April 24, 2026 – For years, post-quantum cryptography (PQC) has been a topic of academic debate and government preparation ahead of the 'Q Day'—the moment a quantum computer is capable of breaking current encryption—. However, this technology has jumped from defense laboratories into the hands of cybercriminals. According to a recent technical analysis, the ransomware known as Kyber has become the first confirmed malware family to use post-quantum standards to protect its operations.
The Technical Leap: ML-KEM in ActionThe cybersecurity firm Rapid7 identified a variant of Kyber written in Rust that is not limited to conventional techniques. While most ransomware uses algorithms like RSA or elliptic curves (vulnerable to future quantum attacks) to protect encryption keys, Kyber has implemented the ML-KEM-1024 standard.
This lattice-based algorithm is one of the standards recently approved by NIST (the U.S. National Institute of Standards and Technology) precisely to withstand the computational power of quantum computers. Although the victim's files are still encrypted with fast AES-256, the 'master key' that allows their recovery is protected by this post-quantum layer.
Real Innovation or Marketing Strategy?For many analysts, this move does not reflect an immediate technical necessity, as today there are no quantum computers capable of decrypting traditional RSA. So, why do it?