The quantum threat to Bitcoin isn't a tomorrow problem—adversaries are already collecting your encrypted transactions to crack later.
The Summary
- Glassnode warns that nearly 30% of Bitcoin's circulating supply sits in addresses vulnerable to future quantum attacks, exposing roughly $600 billion worth of BTC to "harvest now, decrypt later" strategies.
- Security experts point to Bitcoin's slow governance and upgrade process as a critical weakness when quantum computers arrive—competitors with faster adaptation could pull capital.
- The threat model is already active: adversaries stockpile encrypted blockchain data today, betting they'll have quantum computers powerful enough to crack it within a decade.
The Signal
Bitcoin's biggest vulnerability isn't a hack. It's time. Security researchers are raising alarms about "harvest now, decrypt later" attacks, where hostile actors collect encrypted cryptocurrency transactions today with plans to decrypt them once quantum computers become powerful enough. The bet: quantum supremacy arrives before Bitcoin can upgrade its cryptography.
Glassnode's analysis reveals the scale of exposure. Nearly 30% of all Bitcoin in circulation sits in older address formats that use exposed public keys—the kind quantum computers could theoretically crack. That's not a rounding error. At current prices, we're talking about $600 billion in value sitting in wallets designed for a pre-quantum world.
"Bitcoin's decentralized governance and slow upgrade process may drive investors to faster-adapting networks amid looming quantum threats."
The technical fix exists. Bitcoin could migrate to quantum-resistant cryptographic algorithms. Several are already being standardized. But here's the friction: Bitcoin's governance is famously slow and contentious. Any protocol change requires consensus across thousands of nodes, miners with sunk hardware costs, and competing developer factions. The same decentralization that makes Bitcoin censorship-resistant makes it slow to adapt.
Compare that to newer Layer 1s or corporate blockchains. They can fork, upgrade, and implement quantum-resistant signatures in months, not years. That speed difference could reshape where capital flows as quantum timelines compress. If you're managing a treasury or building long-term crypto infrastructure, the network that moves fastest on quantum resistance might matter more than the one with the longest track record.
The "harvest now, decrypt later" playbook isn't theoretical:
- Nation-states and sophisticated adversaries are already doing this with traditional encrypted communications
- Blockchain data is permanent and public—perfect for patient attackers
- Once quantum computers can break current encryption, every transaction ever recorded becomes vulnerable
The Implication
If you hold Bitcoin in older address formats, migration to quantum-resistant addresses isn't optional—it's a countdown. The industry has maybe five to ten years before quantum computers reach the threshold where today's encryption becomes breakable. That sounds like plenty of time until you factor in Bitcoin's governance velocity.
Watch where developers and capital move next. Projects that ship quantum-resistant upgrades quickly will signal competence. Bitcoin will eventually upgrade, but the lag could be measured in years. That window is where newer networks could capture market share by being simply faster to adapt. The chain that protects your assets in 2030 might not be the one with the best fundamentals in 2025—it might just be the one that shipped the fix first.