1 article
Proton Mail has added optional post-quantum encryption for new emails sent between Proton Mail accounts, protecting against harvest-now-decrypt-later (HNDL) attacks in which adversaries collect encrypted communications today with the intention of decrypting them when sufficiently powerful quantum computers become available. The feature uses the CRYSTALS-Kyber (ML-KEM) algorithm standardised by NIST in 2024. Existing encrypted emails are not retroactively re-encrypted.
CVE-2026-42897 is the third actively exploited Exchange zero-day in fourteen months. Each time, the analysis focuses on the specific vulnerability. The more useful question is why email infrastructure continues to receive weaker security monitoring and network controls than VPN gateways and web servers, despite processing more untrusted content than any other enterprise system.
CipherWatch Editorial
Security Intelligence Platform