Taurus: Quantum threat would crash Bitcoin before theft

Taurus reports a quantum computer that breaks Bitcoin’s ECDSA would likely collapse BTC’s price before on-chain theft could settle, shifting risk to ‘harvest now, decrypt later’ attacks.

Swiss custody firm Taurus published a report concluding that a quantum computer capable of breaking Bitcoin’s elliptic curve digital signature algorithm (ECDSA) would probably trigger a rapid price collapse before any forged on-chain transactions could be completed. The report identifies long-term data capture attacks as the more immediate concern.

ECDSA is the cryptographic method Bitcoin uses to prove control of an address. In theory, a quantum computer running Shor’s algorithm could recover a private key from its public key and construct fraudulent transactions, but that capability remains a technical hypothesis rather than a proven, deployable tool.

Taurus argues market dynamics would reduce the incentive to exploit such a capability. If a credible quantum breakthrough became known, holders and traders would likely sell, causing prices to fall and shrinking the value available to steal. At the time of the report Bitcoin traded near $66,781 with a market capitalization above $1.3 trillion, a figure Taurus cites to illustrate potential market impact.

The report notes that a nation-state with advanced quantum resources would have alternative targets and assets, and cites independent assessments that treat the larger quantum threat as manageable rather than imminent. It frames a public or widely suspected breakthrough as self-defeating for an attacker because the announcement would erode the asset’s value faster than fraudulent transactions could be settled on-chain.

The report shifts attention to harvest-now, decrypt-later attacks. In that scenario, an adversary records encrypted communications or stored data today and waits for future quantum hardware to decrypt them. Long-lived confidential records such as archived contracts, corporate databases and private messages are more likely targets for this method than public Bitcoin transactions, which are broadcast and settled on-chain.

Taurus highlights technical and policy developments that influence timelines. The U.S. National Institute of Standards and Technology recommends deprecating current public-key cryptography after 2030 and banning it after 2035, and post-quantum replacement standards are being adopted in major software. Two academic papers published in late March 2026, including an estimate from Google Quantum AI, reduced the estimated quantum resources needed to break elliptic curve cryptography, narrowing the gap to practical feasibility but leaving uncertainty.

The report states custodians cannot guarantee complete quantum protection because blockchains operate outside any single firm’s control. It recommends crypto-agility: the ability to replace vulnerable algorithms quickly within the systems a provider controls. “Post-quantum cryptography is not a reason to panic. It is a reason to act,” the report states, urging organizations to prioritize migration plans and adopt post-quantum standards where possible.

Articles by this author