3. Quantum computers could extract private keys if these addresses are re used.
Quantum Computers could calculate your private key with Shor's after 1 transaction because you are revealing your public key in a transaction.
They even could attack it, while it's in the mempool and replace it with a higher fee. Bitcoin has to use quantum-resistant signatures in the future.
https://csrc.nist.gov/News/2022/pqc-candidates-to-be-standardized-and-round-4Yes, there are some new kinds of attacks regarding the random nonce.
https://eprint.iacr.org/2020/615.pdfMaybe you don't want to sign messages on edge devices with low entropy.