Bitcoin isn't broken, but the gap between safe and compromised just got 512 times narrower.
The Summary
- Italian researcher Giancarlo Lelli cracked a 15-bit elliptic curve key using publicly accessible quantum hardware, winning a 1 BTC bounty from post-quantum security startup Project Eleven.
- This demonstration is 512 times larger than the previous public quantum attack in September 2025, marking the most significant public proof of quantum threat progression.
- Bitcoin's actual 256-bit keys remain secure for now, but the achievement highlights the urgent need for post-quantum cryptography as quantum capabilities accelerate.
- The bounty program measures how close we're getting to "Q-Day," the theoretical point when quantum computers could threaten real cryptocurrency holdings.
The Signal
Giancarlo Lelli used a publicly available quantum computer to break what Project Eleven set up as a test: a deliberately weakened version of the same math that secures every Bitcoin wallet. The 15-bit elliptic curve key he cracked is a miniature version of Bitcoin's 256-bit fortress. Think of it like picking a three-digit lock to prove you're getting better at safecracking, even though the real vault uses a 77-digit combination.
The jump from the previous 512-bit achievement to this 15-bit breakthrough matters because it's exponential, not linear. CoinDesk reports this is 512 times larger than what was possible just seven months ago. That's not slow progress. That's acceleration.
"Bitcoin's security remains a universe away from breaking, yet the distance is measurably shrinking."
Here's the math that matters: Bitcoin uses 256-bit keys. Lelli broke a 15-bit key. That's a gap of 2^241, a number so large it has 73 digits. Bankless emphasizes that actual Bitcoin security remains intact, and they're right. For now. But the trend line is what keeps researchers up at night.
Project Eleven's bounty program exists because waiting until quantum computers can break real keys means waiting until it's too late. The startup is mapping the threat horizon by incentivizing researchers to push quantum hardware to its limits on simplified versions of crypto's core security. Every bounty claimed is a data point showing how fast the gap is closing.
Key context on the actual threat level:
- Bitcoin's 256-bit keys would require quantum computers millions of times more powerful than what's publicly available today
- Current quantum hardware is still noisy, error-prone, and limited in qubit count and coherence time
- The demonstration used accessible quantum infrastructure, proving this isn't happening in secret labs anymore
Crypto Briefing notes this "highlights potential risks to Bitcoin's stability, influencing market sentiment and future security measures." That's the real implication. Not panic, but acknowledgment. The crypto industry has known about quantum threats theoretically for years. Now we're watching the theory get stress-tested in public, with prize money attached.
The Implication
The timeline matters more than the headlines. If quantum capability keeps doubling at this pace, post-quantum migration for crypto isn't a "someday" problem. It's a next-five-years infrastructure project. Bitcoin, Ethereum, and every chain built on elliptic curve cryptography will need to implement quantum-resistant algorithms before Q-Day arrives, not after.
For anyone holding crypto long-term, watch what core developers do, not what headlines say. The signal isn't "Bitcoin is doomed." The signal is "the clock is ticking, and the people who secure your assets need to move faster than the people building quantum computers." Project Eleven's bounty program is doing exactly what it should: making the threat visible, measurable, and impossible to ignore.
Sources
Crypto Briefing | Bankless | Decrypt | CoinDesk | The Block