Glassnode's 30% figure is about public-key exposure, not immediate theft
Most of Bitcoin's exposed supply is operational, not structural
Bulls can keep arguing that quantum risk is still theoretical. That remains true for now, but the on-chain exposure map is clearer. 6.04M BTC, or 30.2% of supply already has a visible public key, which means the debate is no longer whether exposure exists. It is how much of Bitcoin's transferable supply could eventually need migration if the threat becomes more credible.
Only 1.92M BTC, or 9.6%, is structurally exposed by design. The larger share, 4.12M BTC, or 20.6%, is operationally exposed through address reuse, partial spending, or custody practices that have revealed a public key. In other words, most of this supply is exposed by usage patterns, not by inevitability.
Timing is still the main mitigant. Some experts still put practical quantum threats a decade or even decades away. But that does not make the exposure irrelevant. If migration ever becomes urgent, the hardest coins to move will be the old, lost, or poorly managed stockpiles already visible on-chain.
Exchange-related balances add another layer of attention. Glassnode says exchange-held balances alone account for 1.63M BTC, or 8.1% of all issued BTC. That makes custodial practice a key variable in how much exposed supply stays dormant and how much becomes a broader governance and migration debate.
Custody concentration matters more than the headline percentage
Exchanges sit at the center of the exposed pool
That broader exposure map matters, but the market should focus less on "all of Bitcoin" and more on where liquidity and visibility cluster.
The hot spot is custody, not the whole supply
Of the operationally exposed coins, exchanges hold about 40%, and 1.66 million BTC on exchanges falls into the exposed category. That makes custody behavior the real transmission channel. If a handful of large platforms carry most of the visible risk, custodial reputation can become a market variable on its own.
The spread across operators is extreme. Binance registers 85% exposure, while Bitfinex and Robinhood sit at 100%. Gemini, Coincheck, Derebit, Crypto.com, and bitcoin.de are also listed at 100% exposure. By contrast, Coinbase and Fidelity show exposure below 5%, at 5% and 2% respectively. That divergence shows this is not a blanket supply problem. It is a concentration problem.
Why concentrated exposure can shape sentiment first
Liquid, identifiable pools are the ones investors and the market can actually watch, question, and stress. Exposed coins held by centralized venues are visible, tradable, and easier to frame as a governance issue. Coins tied to lost wallets or dormant early supply are not.
So the real pressure point is different. It is not that every Bitcoin faces the same quantum risk today. It is that a large, labeled, and potentially migratable subset sits inside custody systems that can be audited and questioned. If holders believe major venues are lagging on address hygiene, confidence can wobble before technology does.
What investors should watch now
The near-term test is migration discipline, not theoretical decryption. Watch whether high-exposure exchanges reduce key reuse and improve key management, and whether the community moves toward quantum-resistant outputs through BIP-360-style migration. If that happens cleanly, the overhang loses some of its relevance. If it stalls, concentrated custody remains a slower-burn credibility risk.
BIP-360 starts the response, but adoption will decide the impact
The catalyst window is opening because the threat estimate has moved closer. In the last year, the estimated quantum resources to break elliptic curve cryptography fell to fewer than 500,000 physical qubits, which makes the risk harder to dismiss as a distant lab problem. At the same time, BIP-360 was published to Bitcoin's proposal system on Feb. 11, putting quantum resistance on Bitcoin's roadmap for the first time. That combination creates the current setup: not a crisis fork, but a governance race to prepare a migration path before the threat looks unavoidable.
What P2MR changes-and what it does not
BIP-360 is better understood as a migration path than an emergency patch. It is a measured, incremental step, and it does not activate any changes. The key innovation is Pay-to-Merkle-Root, or P2MR, which removes Taproot's key-path spending option and routes spends through script paths to reduce public-key exposure. That matters because the core vulnerability is exposed public keys, not Bitcoin's base hashing layer.
The proposal still supports multisig, timelocks, and complex custody structures through Tapscript Merkle trees, so security and custody flexibility do not have to be an either/or choice. The bottleneck is adoption: wallets, exchanges, and custodians need to support the new output type before the proposal changes much on-chain.
What would strengthen or weaken the thesis
- Address hygiene improves: fewer reused or previously exposed addresses, especially where public keys are already visible.
- Exchanges lead migration: high-exposure venues start moving customers toward script-path spends instead of treating quantum risk as a background issue.
- Merkle-root products gain traction: wallets and custody tools ship P2MR-adjacent flows, showing the market prefers gradual adoption over a last-minute scramble.
If those signals appear, governance starts reducing the future overhang. If they do not, BIP-360 remains a useful signal with limited near-term market impact.