There’s a date that no one knows, but everyone in cybersecurity is worried about it. It’s called Q-Day, and Google recently moved that timeline much closer. The company now predicts that by 2029, quantum computers could crack some of the encryption protecting your emails, bank accounts, medical records, and online communications. That’s not decades away anymore. That’s just a few years from now.
So, what exactly is Q-Day?
Q-Day refers to the moment a quantum computer becomes powerful enough to break today’s cryptography systems. In simple terms, it’s the point where the digital locks protecting much of the internet stop working. Right now, those systems still hold strong. But experts have warned about this possibility since the early 1990s.
Even Michele Mosca, a cybersecurity expert and professor at the University of Waterloo, expressed concern while speaking to CNN, saying, “Everything’s safe—safe, safe—and then suddenly it’s not safe. It’s a very drastic jump.”
That’s what makes Q-Day unsettling. There may not be a slow decline or gradual warning. One major breakthrough in quantum computing could suddenly change how secure the internet really is.
Why Cybersecurity Experts Are Already Worried
Security experts are concerned that attackers may already be preparing for it.
The strategy is known as “harvest now, decrypt later.” Cybercriminals or hostile governments can steal encrypted data today, store it away, and simply wait for quantum computers to become strong enough to unlock it in the future. That means sensitive information like medical histories, private conversations, financial records, military communications, and even genetic data could eventually become exposed.
As one researcher, Catherine Mulligan of Imperial College London puts it to CNN, “You can upgrade your software, but you can’t really upgrade your DNA.”
The industries under the most pressure right now include banking, healthcare, government infrastructure, and cryptocurrency. Most modern crypto systems still rely on encryption methods that quantum computers could eventually crack. Google researchers recently warned that future quantum machines may need far fewer resources than previously expected to break some of these protections.
The Race To Prepare Before Q-Day Arrives
Part of the confusion around Q-Day is that experts still disagree on when it will actually happen. Quantum computers remain difficult to build because qubits, the core building blocks behind quantum computing, are incredibly unstable and require extremely controlled environments.
The Quantum Threat Timeline Report, based on 26 experts, says a full-scale quantum computer is "quite possible" within 10 years and "likely" within 15. But NIST mathematician Dustin Moody notes that even if a quantum computer arrived in five years, "the transition will not be done yet," pointing to past migrations that took 10 to 20 years.
But the uncertainty itself is becoming the problem. Governments and technology companies are already racing to build “post-quantum cryptography,” new encryption systems designed to survive quantum attacks. The US National Institute of Standards and Technology finalized several quantum-resistant encryption standards in 2024, while companies like Google and Cloudflare are already pushing for faster adoption.
The challenge is that upgrading the internet’s security infrastructure takes years. Sometimes decades.
“The real Q-Day may occur before the world becomes aware of it, as states or bad actors potentially seek to use this knowledge to their strategic advantage.” That's from the latest Quantum Threat Timeline Report. And it's the part no one wants to talk about. The date doesn't matter as much as the preparation window. And that window is closing.
Guest Author
