Five Attack Paths Leave Ethereum Exposed
A new whitepaper from Google’s Quantum AI division, co-authored with Ethereum Foundation researcher Justin Drake and Stanford cryptographer Dan Boneh, has mapped out five distinct ways a quantum computer could compromise the Ethereum network. Each attack vector targets a separate component of the blockchain’s architecture, ranging from wallet keys to smart contract admin controls. The combined exposure across these vulnerabilities exceeds $100 billion at current ether prices, with the top 1,000 Ethereum wallets alone holding about 20.5 million ETH in jeopardy.
The research identifies not just user wallets but also smart contracts as points of concern. At least 70 major contracts have admin keys exposed on-chain, collectively controlling roughly 2.5 million ETH. The paper further estimates that approximately $200 billion in stablecoins and tokenized assets rely on these potentially vulnerable admin keys, underscoring the scale of the risk if quantum computers reach sufficient power.
A quantum computer cracking one key every nine minutes could empty all 1,000 top Ethereum wallets in under nine days.
Top Wallets: Nine Days to Crack
One of the most striking findings is how quickly a sufficiently advanced quantum computer could break into high-value wallets. According to Google’s estimate, a machine capable of cracking one private key every nine minutes could work through all 1,000 richest Ethereum addresses in less than nine days—a timeline that puts immense pressure on both users and developers to migrate to quantum-resistant solutions well before such machines become available.
The threat is not limited to Ethereum. Bitcoin’s security model, which relies on similar elliptic curve cryptography (ECC), faces parallel risks. A recent study by Caltech and startup Oratomic suggests that a system with only 10,000 physical qubits—far fewer than previous projections—could break ECC-256 encryption in about ten days. For context, earlier estimates placed the requirement for such an attack at hundreds of thousands or even millions of qubits.
$200 Billion Stablecoins at Direct Risk
Beyond user-held coins, the quantum threat extends to the very infrastructure underpinning decentralized finance (DeFi). The Google paper highlights that around $200 billion worth of stablecoins and tokenized assets on Ethereum depend on admin keys that are currently exposed and could be targeted by a quantum attack. This includes protocols where control functions or upgrade mechanisms are protected by standard cryptographic keys rather than more secure multisignature or decentralized governance systems.
On paper these assets look safe; in practice, their security may rest on how quickly networks can upgrade their cryptography.
See Also
Quantum Threat Timeline: 2032 or Sooner?
The timeline for when quantum computers might realistically threaten blockchain security is now under renewed debate. Justin Drake estimates there is at least a 10% chance that a quantum computer could recover a 'secp256k1' private key from an exposed public key by 2032. Meanwhile, requirements for running Shor’s algorithm—the mathematical engine behind such attacks—have plummeted from roughly one billion physical qubits in 2012 to as few as 10,000 today.
A micro-contrast emerges: while the technical feasibility appears closer than ever, actual deployment timelines remain uncertain due to engineering challenges and hardware limitations.
Why it Matters: Practical Impact and Market Reaction
The practical stakes are enormous. Research published this week shows that nearly one-third of all bitcoin—about 6.7 million BTC valued over $450 billion—is stored in wallets where public keys have already been exposed, making them especially vulnerable if quantum computers reach critical thresholds. Many of these addresses date back to Bitcoin’s earliest years when block rewards were 50 BTC per block; more than 85,000 BTC from Satoshi-era or decade-old wallets have moved just within the past year.
Market participants are already reacting. Bitcoin’s price dropped by 3.5% after analyst Nic Carter amplified Google’s findings in a widely shared post on Tuesday.
Some researchers involved in these studies hold positions at Oratomic or have financial interests in related startups, which may influence their perspectives; still, the convergence of findings across multiple teams signals broad concern among experts.
As reported by coindesk.com, Google did not disclose its actual quantum circuits but instead released a zero-knowledge proof verifying their existence—leaving some technical details opaque even as the headline numbers stir urgency across crypto communities.
What deserves close attention
If a quantum computer with at least 10,000 physical qubits—per the Caltech and Oratomic paper posted Monday—becomes operational, wallets holding roughly 6.7 million BTC (over $450 billion) and the top 1,000 Ethereum wallets with 20.5 million ETH could be immediately vulnerable to key theft; whether such a machine exists or is imminent remains unclear.
