The “9 minutes” figure is not about today’s machines

The biggest misunderstanding is thinking Google said a quantum computer can crack Bitcoin right now. It did not. Google’s paper describes what a future, fault-tolerant quantum computer could do under modeled conditions, not what current hardware can do in practice. The paper says a future machine could derive a bitcoin private key from a public key in roughly nine minutes, but only if that machine is powerful enough and error-corrected enough to run the attack successfully.

Google also said the resource estimate is lower than earlier work suggested, with fewer than 500,000 physical qubits on a superconducting quantum computer potentially enough to attack the elliptic-curve cryptography used by Bitcoin. That is why the paper got so much attention.

What is actually being “cracked”

What is being cracked is not the whole Bitcoin network at once. The attack Google describes is about deriving a private key from a public key using Shor’s algorithm against elliptic-curve cryptography. In simple terms, if an attacker can see your public key and has a sufficiently advanced quantum computer, they may be able to calculate the private key that controls those coins.

That means the risk is tied to how and when public keys are exposed. Bitcoin ownership is ultimately protected by private keys, and the quantum threat becomes serious when those keys can be inferred from public information.

Not all bitcoin is equally exposed

This is the part many people miss. Google’s paper does not say all bitcoin is equally vulnerable right now. It identifies different exposure categories, and the most important distinction is whether the public key has already been revealed. The paper describes “offchain exposure” and other pathways where public key disclosure leaves coins more exposed to future quantum attacks.

That is why the figure of roughly 6.9 million BTC matters. Coverage of Google’s research says about 6.9 million bitcoin are more exposed than the rest because their public keys are already visible or otherwise disclosed. This includes older address types, reused addresses, and other cases where the network or related activity has already revealed the public key.

Why 6.9 million bitcoin are more at risk

The reason those coins are more exposed is simple: once the public key is known, the attack becomes much more direct. Google’s paper explains that some exposure happens as a consequence of Bitcoin’s transaction design, while outside analysis notes that older Pay-to-Public-Key outputs, reused addresses, and some cross-chain or linked-key situations increase that risk.

By contrast, coins sitting in addresses where the public key has not yet been revealed are in a better position, at least relative to this specific attack path. That does not make them permanently safe, but it means they are not at the front of the quantum risk queue in the same way as already-exposed coins.

Why the 10-minute block time matters

The “9 minutes” number also matters because Bitcoin blocks are produced roughly every 10 minutes on average. If a future quantum attacker could derive a private key from a newly revealed public key within that sort of window, then in theory they could try to steal funds after a transaction is broadcast but before it is safely confirmed. That is part of why the number feels so alarming.

Still, that is a future attack model, not a live market reality today. The paper is a warning about how little margin the network might have in a post-quantum world, not evidence that attackers can already do this.

Why this matters for the market

This matters because it shifts the debate from abstract theory to migration planning. Google’s work suggests the quantum threshold may be lower than many people assumed, which means Bitcoin and other crypto ecosystems may need to start taking post-quantum transition plans more seriously. CoinDesk also reported that ecosystems are already starting to diverge in how they think about this threat.

The real issue is not whether Bitcoin explodes tomorrow. It is whether the industry has enough time to move users, wallets, infrastructure, and protocols toward quantum-resistant security before a cryptographically relevant quantum computer exists. That is a governance and coordination problem as much as a technical one.

The headline is dramatic, but the real message is about preparation

So the clean version is this: “cracking Bitcoin in 9 minutes” means a future quantum computer might be able to derive a private key from an exposed public key quickly enough to threaten some bitcoin holdings and some in-flight transactions. It does not mean Bitcoin is broken today, and it does not mean all BTC is equally exposed. The coins most at risk are the ones whose public keys are already visible, which is why the 6.9 million BTC figure matters so much.