This study evaluates the threat posed by quantum computing to blockchain systems relying on elliptic curve cryptography, particularly ECDSA, with a focus on “instant spend” attacks exploiting public key exposure in the mempool. By refining resource estimates for Shor’s algorithm, it distinguishes—for the first time—the impact of fast versus slow clock-speed quantum architectures on the feasibility of solving the 256-bit elliptic curve discrete logarithm problem within practical timeframes. Integrating zero-knowledge proofs enables responsible disclosure of vulnerabilities. The analysis demonstrates that under a physical error rate of 10⁻³, fewer than 500,000 physical qubits could break ECDSA in minutes, exposing the quantum fragility of major cryptocurrencies—including advanced features like smart contracts and Proof-of-Stake consensus—and underscores the urgent need for post-quantum cryptographic migration strategies and policy interventions.

This whitepaper seeks to elucidate implications that the capabilities of developing quantum architectures have on blockchain vulnerabilities and mitigation strategies. First, we provide new resource estimates for breaking the 256-bit Elliptic Curve Discrete Logarithm Problem, the core of modern blockchain cryptography. We demonstrate that Shor's algorithm for this problem can execute with either <1200 logical qubits and <90 million Toffoli gates or <1450 logical qubits and <70 million Toffoli gates. In the interest of responsible disclosure, we use a zero-knowledge proof to validate these results without disclosing attack vectors. On superconducting architectures with 1e-3 physical error rates and planar connectivity, those circuits can execute in minutes using fewer than half a million physical qubits. We introduce a critical distinction between fast-clock (such as superconducting and photonic) and slow-clock (such as neutral atom and ion trap) architectures. Our analysis reveals that the first fast-clock CRQCs would enable on-spend attacks on public mempool transactions of some cryptocurrencies. We survey major cryptocurrency vulnerabilities through this lens, identifying systemic risks associated with advanced features in some blockchains such as smart contracts, Proof-of-Stake consensus, and Data Availability Sampling, as well as the enduring concern of abandoned assets. We argue that technical solutions would benefit from accompanying public policy and discuss various frameworks of digital salvage to regulate the recovery or destruction of dormant assets while preventing adversarial seizure. We also discuss implications for other digital assets and tokenization as well as challenges and successful examples of the ongoing transition to Post-Quantum Cryptography (PQC). Finally, we urge all vulnerable cryptocurrency communities to join the ongoing migration to PQC without delay.