The argument that “quantum computing hasn’t even broken SHA-0” completely misses the point. The real threat to Bitcoin isn’t SHA-256, it’s ECDSA, the algorithm that secures users’ private keys. ECDSA is known to be vulnerable to Shor’s algorithm, which can run on a sufficiently powerful and stable quantum computer. This isn’t FUD, it’s a well-established concern in peer-reviewed cryptography literature.

As for the NIST: yes, they’ve been working on post-quantum cryptographic standards since 2016, and they’re only now finalizing them. That alone shows the risk is real and serious enough to justify proactive action. Unlike centralized systems, Bitcoin can’t be updated with a switch. It requires global consensus, coordination, BIPs, testing, and time. Saying “we’ll update when needed” is dangerously naive, by the time the threat materializes, it might be too late to respond safely.

If Bitcoin is meant to survive for decades, it must prepare today for the threats of tomorrow.