The theoretical threat of quantum computers to Bitcoin’s cryptographic security now has a dollar figure: $469 billion. That’s the value of 6.04 million BTC, or 30.2% of the total issued supply, whose public keys are exposed on-chain today and could be exploited if a sufficiently powerful quantum computer ever emerges. The data comes from a Glassnode analysis detailed in the original report covered by WuBlockchain.
The research breaks the exposed supply into two categories. Structural exposure accounts for 1.92 million BTC and mainly stems from early Bitcoin mining outputs that paid directly to public keys (P2PK), a format that never hid the key. The second category, operational exposure, is larger at 4.12 million BTC and is almost entirely driven by address reuse — when the same Bitcoin address is used more than once to receive funds. Spending even a single satoshi from an address reveals its public key, effectively marking all funds at that address as exposure.
Address Reuse Is the Primary Driver
Address reuse has been discouraged by Bitcoin developers and wallet providers for years. It reduces privacy and, as this Glassnode data shows, it creates a massive stockpile of coins that would be at risk in a quantum attack scenario. Unlike structural exposure from legacy P2PK coins, operational exposure is avoidable. Every time a user sends funds from an address without moving the remaining balance to a fresh address, the public key becomes permanently visible. If an exchange reuses a deposit address for thousands of customers, the entire aggregated balance inside that address gets flagged as exposed.
The scale is striking. The total exposed supply is about four times the amount of Bitcoin held by all spot Bitcoin ETFs combined. While ETFs use institutional-grade custody that regularly rotates addresses and generates new keys, the Glassnode data shows that a large portion of the network remains lagging behind best practices. The finding also underscores that even if quantum computing remains a distant threat, the operational debt created by address reuse is building daily.
Exchanges Sit on 1.66 Million BTC of Unsafe Coins
Exchanges are the single largest contributor to operational exposure. They hold 1.66 million BTC, or 8.3% of total Bitcoin supply, in wallets that have public keys exposed due to reused addresses. That represents roughly 40% of all operationally unsafe Bitcoin identified by Glassnode. The figure points to systematic address reuse within custodian infrastructure, where the same receiving address is often assigned to multiple users for simplicity, without automatically sweeping funds to fresh keys.
This concentration magnifies the risk profile of the network. While a quantum attack would require computational capabilities far beyond anything available today, a breach of a large exchange’s exposed addresses would cascade. In practice, exchanges could reduce exposure significantly by adopting regular address rotation and mandating that users generate new deposit addresses for every transaction. A handful of major platforms already follow these practices, but the Glassnode numbers suggest the majority do not.
Quantum Threat: Theoretical but Not Immediate
Current quantum computers have no chance against the elliptic curve cryptography Bitcoin relies on. Estimates suggest it would take millions of physical qubits to break secp256k1, while today’s machines are measured in hundreds. Still, the technology is advancing and research toward post-quantum security in Bitcoin continues. Developers have been exploring signature schemes resistant to Shor’s algorithm, but any such upgrade would require a network-wide soft fork and careful coordination. Leading cryptographers including Blockstream CEO Adam Back have publicly described current quantum progress as overstated — experts weighed in on whether the threat to Bitcoin is real or exaggerated .
The Glassnode data doesn’t predict a timeline for quantum threats. Instead, it serves as a measure of how much Bitcoin sits in a state of heightened cryptographic exposure today. The figure of 6.04 million BTC includes both coins that were always visible (like early P2PK rewards) and coins that were needlessly exposed through avoidable reuse. That distinction matters because operational exposure can still be mitigated — by moving funds to fresh, unused addresses — while structural exposure is permanent. The broader implications for blockchain security across Bitcoin and Ethereum are explored in depth in this analysis of how quantum computing could reshape cryptocurrency infrastructure .
The analysis arrives as institutional allocations to Bitcoin grow and long-term holders increasingly treat the asset as digital gold. A security vulnerability linked to address management could eventually influence custody standards and insurance requirements. Some post-quantum blockchain projects are already positioning for this shift — Abelian, for example, partnered with MEXC to advance quantum-resistant crypto infrastructure ahead of expert estimates placing cryptographically relevant quantum computers in the 2028–2030 window. In the near term, the numbers act as a reminder that the cryptography securing Bitcoin is not static. Even if quantum computers remain a distant cloud, practices around key exposure shape the resilience of the network over decades.
