Crypto

A Startup Is Offering Bitcoin Bounties to Prove Quantum Computers Can Already Break Crypto Keys

4 min read

Project Eleven, a post-quantum security startup, has spent 2026 running an unusual public experiment: offering a live Bitcoin bounty to anyone who can demonstrate a real quantum computer breaking the elliptic curve cryptography that secures Bitcoin, and most of the rest of the internet’s security infrastructure, using publicly accessible quantum hardware rather than theoretical calculation. On April 24, independent researcher Giancarlo Lelli collected on part of that bounty, successfully breaking a 15-bit elliptic curve key and winning 1 BTC for the demonstration.

The immediate caveat matters more than the headline. Bitcoin’s actual cryptography runs on 256-bit keys, and the computational difficulty of breaking elliptic curve cryptography scales in a way that makes the gap between 15 bits and 256 bits astronomically larger than the numbers alone suggest, nowhere close to a near-term threat to any real Bitcoin wallet. Lelli’s demonstration proves the underlying attack method works on real hardware today, not that Bitcoin itself is at risk today. Those are different claims, and crypto media coverage of the milestone has not always been careful about keeping them separate.

What Project Eleven’s broader research argues is more about the trajectory than the present moment. Its 2026 report estimates quantum computers could plausibly break modern elliptic curve encryption as early as 2030, with better than even odds of a break by 2033, and puts more than $3 trillion in digital assets currently secured by that cryptography, spanning Bitcoin, Ethereum, and the stablecoins built on top of both, within a four-to-seven-year window of genuine exposure. Independent research out of Google in 2026 reportedly cut the number of qubits believed necessary to break Bitcoin’s specific cryptographic scheme by a factor of 20, a reduction significant enough that some estimates of the realistic timeline shortened from decades to, under the most aggressive assumptions, potentially closer to a single year, though that end of the range deserves real skepticism given how often quantum computing timelines have been revised in both directions over the past decade as both the theory and the hardware have evolved.

The nuance that gets lost most often in coverage of this threat is that not all Bitcoin is equally exposed. The risk applies specifically to wallets whose public keys have already been revealed on-chain, which happens automatically whenever a wallet sends a transaction using older address formats, rather than to Bitcoin generally. Coins sitting in wallets that have only ever received funds and never sent any, where only a hashed address is public and the actual public key stays hidden until the moment of a first spend, are meaningfully better protected under current quantum-threat models. Project Eleven’s own estimates put roughly 6.9 million BTC at risk under specific exposure conditions, a large number in absolute terms, worth well over $400 billion at current prices, but a minority of total circulating supply and concentrated heavily in older wallets, including a significant share believed to belong to Bitcoin’s earliest miners and holders from the 2009 to 2013 period, coins that have often sat untouched for over a decade.

The crypto industry’s response so far has focused on migration mechanics rather than panic. Proposals under discussion include timestamp-based schemes that let wallet holders cryptographically prove ownership of coins without exposing the underlying public key prematurely, and multi-year migration windows that would give holders of exposed older-format wallets time to move funds into quantum-resistant address formats before any real quantum threat materializes. None of this requires solving the hardest technical problem immediately; it requires building consensus and tooling well ahead of the actual threat, the same kind of multi-year lead time critical infrastructure upgrades always need, and the same kind of lead time that’s easy to under-invest in precisely because the threat still feels distant.

The stakes extend well past Bitcoin. The same elliptic curve and RSA-family cryptography under threat here also secures online banking, cloud infrastructure, government authentication systems, and military communications, which is the actual reason this research gets funded and taken seriously by governments and large financial institutions rather than dismissed as crypto-industry marketing. For the Philippines specifically, BSP’s own newly tightened VASP framework already requires licensed exchanges to formally assess the underlying security and transparency of any asset they list, and government digital ID and banking authentication systems rely on the same cryptographic families now under long-term threat. Post-quantum migration readiness is currently treated, reasonably, as a distant problem in most Philippine financial and government planning. Project Eleven’s core argument, that a four-to-seven-year exposure window is not actually that far away once you account for how long real infrastructure migrations take to plan and execute, is worth Philippine regulators and licensed VASPs taking seriously now rather than once a live 256-bit break, rather than a 15-bit demonstration, actually happens.

Bitcoin security cryptography quantum computing

Share this article

Share on X Share on LinkedIn Share on Facebook

Related Articles

Newsletter

By subscribing, you agree to our Privacy Policy.