Recent research by blockchain analytics firm Glassnode reveals alarming findings regarding the potential vulnerability of Bitcoin to future quantum computing threats. More than 30% of Bitcoin in circulation, equivalent to over 6 million coins valued at approximately $469 billion, has had its public key exposed on-chain. This exposure may render these coins susceptible to theft if sufficiently advanced quantum computers become available.
The analysis categorizes the exposed Bitcoin into two main types: structural and operational. Structural exposure, which accounts for 1.92 million BTC (9.6% of the total supply), arises from script designs that unintentionally reveal public keys. This includes early “pay-to-public-key” outputs tied to Bitcoin’s pseudonymous founder Satoshi Nakamoto and various multisignature structures. These coins are often effectively immovable, existing in lost wallets or dormant holdings that cannot be migrated to safer formats.
Conversely, operational exposure, totaling 4.12 million BTC (20.6% of the total supply), is a more pressing issue. This category consists of coins that became vulnerable due to the practice of address reuse, where multiple transactions are received at the same wallet address, ultimately exposing the public key when a coin is spent. Exchanges play a significant role in this scenario, with approximately 40% of operationally exposed Bitcoin (1.66 million BTC) linked to platforms.
The degree of exposure varies significantly among exchanges. Coinbase has been noted for having a relatively low exposure rate, with only 5% of its labeled balances at risk, while Binance and Bitfinex present troubling figures, with 85% and 100% of their balances exposed, respectively.
Glassnode emphasizes that the findings should not be construed as a risk ranking or a solvency signal for specific firms, but rather reflect choices made in custody design. Sovereign Bitcoin holdings from countries like the United States, United Kingdom, and El Salvador show no quantum exposure, indicating that governmental entities have adopted safer custody practices.
While the report stops short of predicting when or if a quantum computer capable of breaching Bitcoin encryption will emerge, it highlights that exchanges and custodians can take proactive measures to mitigate visible exposure. Improved wallet hygiene, effective reserve management, reduced key reuse, and migration planning are some strategies that could reduce the risk.
These insights come amid a surge in quantum computing research and advancements, prompting discussions within the Bitcoin developer community about possible protocol-level updates, such as BIP-360, which aims to introduce more quantum-resistant transaction formats. Speculation surrounding a timeline for “Q-Day,” when quantum technology could threaten current cryptographic security standards, suggests a window between 2030 and 2032 or later.
In light of these developments, the U.S. government has also announced plans to invest over $2 billion into quantum startups and foundries, further emphasizing the urgent need for preparedness. As the digital currency landscape continues to evolve, the necessity for robust security measures against emerging technologies becomes more critical.
