See more like this on Google
Share article
Share article
Quantum FUD just got its annual refresh, and CT is doing that thing where "future risk" gets speedrun into "sell everything, touch grass." Galaxy Digital's head of research Alex Thorn is pushing back, saying the quantum threat to Bitcoin$62,706.58 is real, but it is not an existential crisis, at least not with today's hardware and today's network conditions. [1]
Thorn's comments, reported Thursday (March 19), land in a familiar spot for crypto: a credible long-term problem that is easy to meme into an immediate apocalypse. Galaxy's point is simpler: quantum computing is a targeted risk to certain wallets and key types, not a "Bitcoin breaks tomorrow" event. [2]
Enjoy articles without ads?
Register for free and get unlimited access to all articles.
What Galaxy is actually warning about
The core fear is straightforward: a sufficiently powerful quantum computer could use Shor's algorithm to derive a private key from a public key for common elliptic curve cryptography (ECDSA), the scheme Bitcoin$62,706.58 uses for signatures. If an attacker can compute private keys fast enough, they can steal funds from addresses where the public key is exposed. [3]
Galaxy's framing matters here. Bitcoin's security model does not always reveal a public key until coins are spent. Many outputs are locked to a hash of the public key, not the public key itself, which reduces the attack surface until a transaction broadcasts a public key on-chain. That means the "quantum target set" is narrower than most doom threads imply, concentrated in wallets and scripts where the public key is already visible or repeatedly exposed.
The risk is uneven, and wallet behavior is the real villain
Thorn's argument highlights an underappreciated nuance: quantum risk is not evenly distributed across all bitcoin. Coins sitting in outputs where the public key has never been revealed are in a different category than coins in address types or spending patterns that expose keys earlier.
Collector and user habits become the story. Address reuse, a basic privacy and security anti-pattern, also increases potential exposure because it correlates with more frequent public key revelation. On-chain, that translates into a subset of UTXOs that are more "quantum-readable" than others. The punchline is not "Bitcoin is doomed," it is "some operational security choices age poorly under new adversary models."
Why this is not a network-level crisis (yet)
Galaxy also draws a line between stealing coins and breaking Bitcoin as a system. Quantum capability sufficient to compromise some exposed keys is not the same as rewriting consensus.
Bitcoin's proof-of-work security, block propagation, and economic finality are not instantly nullified by a quantum machine that can recover individual private keys. A quantum adversary would still face practical constraints: scale, speed, and the real-world engineering challenge of building and operating a machine capable of attacking large numbers of keys within transaction-relevant windows. That "within the window" part matters because once a transaction reveals a public key, it still needs to be exploited fast enough to front-run or race confirmations in a meaningful way.
Developers are already treating this like a migration problem
The most actionable part of Thorn's message is that the ecosystem is not waiting around. Galaxy points to multiple efforts underway, including concepts for quantum-resistant address formats and phased upgrade paths. [4]
That implies a likely future playbook that looks less like a dramatic hard reset and more like a slow, coordinated migration: introduce new post-quantum (PQ) spending conditions, encourage moving funds to PQ-safe outputs over time, and progressively deprecate older patterns. The hard part is not just cryptography, it is social and operational coordination. Any transition touches wallets, exchanges, custodians, hardware devices, and a long tail of offline storage setups that do not update on command.
The market read: long-term tail risk, not "don't buy BTC"
Galaxy's investor-facing takeaway is basically: do not confuse horizon risk with imminent insolvency.
Quantum readiness is closer to an infrastructure upgrade cycle than a sudden exploit narrative. Yes, the existence of a credible future attacker model changes how you think about key exposure and upgrade urgency. No, it does not automatically convert into a near-term reason to avoid Bitcoin$62,706.58, especially given the absence of public evidence that quantum computers can currently crack Bitcoin keys at relevant scale.
CT sentiment will keep oscillating because "quantum" is a perfect FUD keyword: technical enough to intimidate, vague enough to inflate. The more useful signal will be whether major wallet providers and custodians start shipping concrete PQ options and whether there is visible momentum toward standardizing a path that the network can actually adopt.
Practical takeaway: what to watch next
Three things matter more than the headline:
- Upgrade proposals that look shippable: Watch for credible, phased approaches to quantum-resistant outputs that minimize disruption for exchanges and cold storage.
- Wallet and custodian behavior: If major providers start nudging users away from address reuse and toward safer spending patterns, that is a quiet indicator the industry is preparing for eventual migration.
- Evidence of capability, not hype: The catalyst that changes this from "long-term engineering" to "near-term incident response" would be credible proof that quantum hardware can recover ECDSA keys quickly enough to steal funds in realistic conditions.
For now, Galaxy's stance is a sober middle: quantum is not a joke, but it is also not a fire drill today. The risk is real, the timeline is uncertain, and the best defense starts with boring basics and ends with coordinated upgrades.
