Glassnode Flags 30.2% of Bitcoin Supply as Quantum-Exposed in Future Q-Day Risk

Glassnode has put a hard number on one of Bitcoin’s least comfortable questions: how much of the supply could be exposed if quantum computers ever become powerful enough to crack today’s cryptography.

• 30.2% of BTC supply flagged as quantum-exposed
• 6.04 million BTC potentially vulnerable in a future Q-Day scenario
• Structural exposure vs operational exposure
• Bitcoin may move slower than other chains on quantum readiness

Glassnode estimates that roughly 30.2% of Bitcoin’s supply, or about 6.04 million BTC, sits in a state that could become vulnerable if quantum computing eventually matures enough to break current cryptographic protections. That does not mean quantum attacks are about to start draining wallets tomorrow. It does mean Bitcoin has a real long-term security issue sitting in plain sight: a meaningful slice of the network already has some level of public key exposure.

For readers who don’t live and breathe cryptography, here’s the simple version: Bitcoin is protected by math that is extremely difficult for today’s computers to reverse. Quantum computers are future machines that could one day solve certain math problems much faster than conventional hardware. If they get good enough, some of the assumptions Bitcoin relies on today could weaken. That’s the whole concern. Not doom. Not magic wallet-draining lasers. Just a very serious future risk worth mapping before the bill comes due.

The analysis splits that risk into two buckets. The first is structural exposure, where public keys are revealed by design. The second is operational exposure, where coins become vulnerable because of behavior like address reuse and other sloppy wallet habits. In plain English: part of the risk is baked into old Bitcoin outputs, and part of it is people using wallets like they’re trying to make an attacker’s job easier. Truly a classic human flourish.

According to the report, about 1.92 million BTC, or roughly 9.6% of total supply, falls under structural exposure. That includes early pay-to-public-key (P2PK) outputs, an old Bitcoin format where the public key is visible directly on-chain. Some of those coins may even be linked to Satoshi Nakamoto or other early adopters. If quantum computers ever reach the point where they can derive private keys from exposed public keys, those old outputs would be sitting in the danger zone unless they had already been moved.

That distinction matters. A private key is the secret that proves ownership and lets someone spend bitcoin. A public key is what the network can see and verify against. In normal use, Bitcoin tries to keep the public key hidden until it needs to be revealed. The longer that key stays exposed, the bigger the theoretical attack surface becomes if quantum computing ever crosses the line from lab curiosity to real-world threat.

The larger share, around 4.1 million BTC, or 20.6% of total supply, is operationally exposed. That means coins made vulnerable through address reuse and related behavior. Address reuse is exactly what it sounds like: using the same receiving address over and over instead of generating fresh ones. It’s bad operational hygiene today and potentially worse tomorrow. It also leaks privacy now, which should already be enough reason to stop doing it. In crypto, privacy and security usually travel together; ignore one and the other starts looking shaky.

Glassnode’s framing is careful, and that caution matters. The report explicitly says:

“This analysis does not take a position on whether, or when, practical quantum attacks against Bitcoin will become possible…”

It adds:

“…it is a data lens: a way to quantify where public-key exposure already exists…”

That’s the right way to talk about quantum risk. The report is not screaming that Bitcoin is finished. It is showing where the weak spots already are if and when the threat becomes real. That’s a useful difference, because the crypto space loves to confuse “possible someday” with “imminent collapse” whenever there’s a headline to juice.

Another wrinkle is that some coins simply can’t be moved into safer, quantum-resistant addresses very easily. Dormant coins — coins that haven’t moved in years, sometimes since Bitcoin’s earliest days — may belong to people who lost their keys, forgot about the stash, or are no longer around. If Q-Day ever arrives, those coins won’t suddenly wake up and save themselves. Bitcoin is famous for being hard to change. That’s usually a feature. In this case, it’s also a headache.

That conservative design is a huge reason Bitcoin may be slower than some other chains when it comes to quantum readiness. The report suggests that centralized exchanges are moving faster than larger decentralized networks in preparing for quantum security threats. It notes that:

“Crypto exchanges fall under this category, though exposure is uneven across platforms.”

That makes sense. Centralized firms can patch systems and change practices more quickly than a global monetary network that depends on broad consensus. But speed is not the same thing as wisdom. Centralization makes upgrades easier, sure, but it also reintroduces trust, control, and all the other baggage Bitcoin was built to sidestep. Faster patching is handy. Becoming a more obedient database is not exactly the dream.

The report also points to broader industry warnings, including a Google first-quarter report that projected a possible Q-Day within a few years. Q-Day is the hypothetical point when quantum computers become strong enough to seriously threaten current cryptographic systems. That date is not on a calendar, and nobody should pretend it is. But it is now part of the serious conversation around Bitcoin security, blockchain cryptography, and the future of digital assets.

Bitcoin isn’t the only network facing this question, and not everyone is moving at the same speed. The piece argues that Ethereum and XRP are moving more aggressively on quantum readiness than Bitcoin. Ethereum is described as having a better posture partly because of upgrades like The Merge and its transition to proof-of-stake, which gives it a different security and governance setup to work from. Citi is also cited as tipping Ethereum to be better positioned for Q-Day. That doesn’t make Ethereum invincible, and it doesn’t make Bitcoin obsolete. It does show a real trade-off: chains with more flexible governance and faster upgrade cycles can react quicker, but that flexibility often comes with more centralization risk and more moving parts. Pick your poison carefully.

Bitcoin’s protocol conservatism is usually why people trust it. The network has earned its reputation by refusing to break what works, avoiding reckless changes, and prioritizing stability over trendy nonsense. That same instinct could slow the adoption of quantum-resistant Bitcoin upgrades, especially when the network includes dormant coins that cannot simply be migrated on command. The upside is reliability. The downside is that a slow-moving giant is still slow-moving, even when the fire alarm starts ringing.

What matters for holders is not panic, but preparation. Today’s Bitcoin cryptography remains secure against today’s machines. But Glassnode’s data shows that a meaningful portion of the supply is already exposed in ways that could matter if quantum computing crosses the threshold from theory to practical attack capability. Some of that exposure is due to early protocol design, some of it is user behavior, and some of it is simply the burden of a network with history. Old systems leave old footprints.

For anyone storing bitcoin, the practical lesson is straightforward: avoid address reuse, use modern wallet practices, and pay attention to how custody works. If you’re holding coins on an exchange, your exposure depends on that platform’s infrastructure and policies. If you’re self-custodying, your habits matter even more. Good wallet hygiene is not glamorous, but neither is getting wrecked by preventable mistakes because “I thought it was fine.”

There’s also a broader strategic point here for developers and protocol designers. If Bitcoin is going to remain a monetary network for decades, quantum-resistant signature schemes will eventually need serious discussion. That doesn’t mean rushing into sloppy changes or ripping up the protocol for the sake of headlines. It means planning early, because crypto history is full of people who waited until the problem was already on fire before looking for the extinguisher.

How much Bitcoin may be exposed?

Glassnode estimates about 30.2% of supply, or roughly 6.04 million BTC, is quantum-exposed in some form.

What does quantum exposure mean?

It means the public key is already visible or may become easier to target if quantum computers can break current cryptography.

What is the difference between structural and operational exposure?

Structural exposure exists by design, while operational exposure comes from habits like address reuse and poor wallet management.

Why is Bitcoin slower to respond?

Bitcoin is deliberately conservative, and dormant coins cannot simply be moved to safer addresses overnight.

Are quantum attacks coming next week?

No. The report does not predict timing; it maps risk, not a countdown clock.

Can Bitcoin be upgraded for quantum resistance?

Yes, but any upgrade would need broad coordination, careful testing, and a long transition period to avoid breaking the network.

Should Bitcoin users stop reusing addresses?

Absolutely. Reusing addresses hurts privacy now and can increase security risk later.

That’s the uncomfortable truth: Bitcoin is still the strongest monetary network in the digital age, but it is not immune to future cryptographic threats. If Q-Day ever arrives, the winners will be the networks, custodians, and users who prepared early. The losers will be the ones who treated address hygiene like an optional extra and assumed “someone else will fix it later.” That mindset has already cost people a fortune in crypto. No need to let quantum computing join the list.