How do the wealthiest bitcoin holders secure their bitcoin?

First published: 02/20/2024
| Last updated: 10/29/2024
| -- min read

If you want to hold a large amount of bitcoin securely, it makes sense to investigate how the wealthiest bitcoin holders handle this task. While wealth doesn’t cause infallibility, these entities have the most to lose from making a mistake. They should be highly motivated to put substantial thought and research into the security of their bitcoin.

Identifying the wealthiest bitcoin holders can be difficult, and asking them to reveal the full details of their security is unlikely to be successful. However, the bitcoin blockchain provides us with some valuable information. The transaction history and balances of all bitcoin addresses is publicly-available knowledge.

What information can we gather?

If an entity (person or group) owns a lot of bitcoin, it’s possible that they keep their bitcoin spread across many different addresses, each with a smaller-sized balance. Those addresses wouldn’t necessarily stand out from the crowd. In some cases, it’s impossible to associate different addresses with the same wallet or owner. In other cases, association between addresses requires blockchain analysis, often relying on advanced techniques and assumptions which are not guaranteed to provide accurate information.

Although it’s challenging to definitively identify the wealthiest entities in terms of bitcoin, and precisely how much bitcoin they own, it’s trivial to identify the wealthiest bitcoin addresses. There are a few websites that track these addresses in real time. The nature of these addresses can provide a lot of clues about how the bitcoin is secured.

For example, if you are familiar with address types, you’ll know that any address that begins with a “1” is a P2PKH address, and therefore must be a singlesig arrangement. Similarly, any address that begins with “bc1q” and has a length of 42 characters is a P2WPKH address, and must also be a singlesig address. Bitcoin held by one of these address types isn’t utilizing multisig protection. Using SSS or MPC would be the only way to achieve institutional-grade security, as discussed in our article covering thresholds.

Meanwhile, any address that begins with a “3” is a P2SH address. Any address that begins with “bc1q” and has a length of 62 characters is a P2WSH address. These address types have the possibility of utilizing multisig. However, only after bitcoin has been spent out of these addresses will the custody structure be revealed. Some P2SH addresses are actually singlesig, a structure that was temporarily popular while the Segwit Soft Fork was being initially adopted. Therefore, if one of these address types has never been spent out of, the custody structure is unknown.

Looking at the data

Let’s take a look at the 81 addresses which each hold more than 10,000 bitcoin, as of January 30, 2024. Altogether, these addresses hold more than 2.5 million bitcoin.

Bitcoin BalanceAddressCustody Structure
248,59734xp4vRoCGJym3xR7yCVPFHoCNxv4TwseoSinglesig
204,010bc1qgdjqv0av3q56jvd82tkdjpy7gdp9ut8tlqmgrpmv24sq90ecnvqqjwvw973-of-5 Multisig
127,136bc1ql49ydapnjafl5t2cp9zqpjwe6pdgmxy98859v2Singlesig
115,17739884E3j6KZj82FK4vcCrkUvWYL5MQaS3vUnknown
94,643bc1qazcm763858nkj2dj986etajv6wquslv8uxwcztSinglesig
94,50537XuVSEpWW4trkfmvWzegTHQt7BdktSKUsSinglesig
79,957*1FeexV6bAHb8ybZjqQMjJrcCrHGW9sb6uFSinglesig**
73,3933M219KR5vEneNb47ewrPfWyb5jQ2DjxRP6Singlesig
69,370bc1qa5wkgaew2dkv56kfvj49j0av5nml45x9ek9hz6Singlesig
68,2003LYJfcfHPXYJreMsASk2jkn69LWEYKzexbSinglesig
66,465bc1qjasf9z3h7w3jspkhtgatgpyvvzgpa2wwd2lr0eh5tx44reyn2k7sfc27a43-of-5 Multisig
59,300bc1qd4ysezhmypwty5dnw7c8nqy5h5nxg0xqsvaefd0qn5kq32vwnwqqgv4rzr3-of-5 Multisig
53,8801LdRcdxfbSnmCYYNdeYpUnztiYzVfBEQeCSinglesig**
51,8301AC4fMwgY8j9onSbXEWeH6Zan8QGMSdmtASinglesig
44,0001LruNZjwamWJXThX2Y8C2d47QqhAkkc5osSinglesig
43,6021Ay8vMC7R1UbyCCZRVULMV7iQpHSAbguJPSinglesig
41,3343LCGsSmfr24demGvriN4e3ft8wEcDuHFqh2-of-2 Multisig
37,932bc1qs5vdqkusz4v7qac8ynx0vt9jrekwuupx2fl5udp9jql3sr03z3gsr2mf0f3-of-6 Multisig
37,9273LQUu4v9z6KNch71j7kbj8GPeAGUo1FW6aUnknown
36,000bc1q7ydrtdn8z62xhslqyqtyt38mm4e2c4h3mxjkugSinglesig
32,32112XqeqZRVkBDgmPLVY4ZC6Y4ruUUEug8FxSinglesig
32,0193MgEAFWu1HKSnZ5ZsC8qf61ZW18xrP5pgd2-of-3 Multisig
31,643bc1qx9t2l3pyny2spqpqlye8svce70nppwtaxwdrp4Singlesig
31,379bc1qjh0akslml59uuczddqu0y4p3vj64hg5mc94c40Singlesig
31,2753FHNBLobJnbCTFTVakh5TXmEneyf5PT61BUnknown
31,000*12ib7dApVFvg82TXKycWBNpN8kFyiAN1drSinglesig**
30,175bc1qf2yvj48mzkj7uf8lc2a9sa7w983qe256l5c8fsSinglesig
28,151*12tkqA9xSoowkzoERHMWNKsTey55YEBqkvSinglesig**
26,1401aXzEKiDJKzkPxTZy9zGc3y1nCDwDPub2Singlesig**
24,60619N9sDbJ7MDQcPFSjPNqjNDzyRNbNsQ6ZvSinglesig
24,49517MWdxfjPYP2PYhdy885QtihfbW181r1rnSinglesig
24,06738UmuUqPCrFmQo4khkomQwZ4VbY2nZMJ672-of-6 Multisig
23,96919D5J8c59P2bAkWKvxSYw8scD3KUNWoZ1CSinglesig
23,9223G98jSULfhrES1J9HKfZdDjXx1sTNvHkhN3-of-8 Multisig
23,7891m5SViB9XNwsusvnnUqpfL9Q1E5EZxPHsSinglesig
22,51415cHRgVrGKz7qp2JL2N5mkB2MCFGLcnHxvSinglesig
22,221bc1qr4dl5wa7kl8yu792dceg9z5knl2gkn220lk7a9Singlesig
20,544bc1qm34lsc65zpw79lxes69zkqmk6ee3ewf0j77s3hSinglesig
20,00817rm2dvb439dZqyMe2d4D6AQJSgg6yeNRnSinglesig
19,85239gUvGynQ7Re3i15G3J2gp9DEB9LnLFPMNSinglesig
19,6793EMVdMehEq5SFipQ5UfbsfMsH223sSz9A94-of-8 Multisig
19,414*1PeizMg76Cf96nUQrYg8xuoZWLQozU5zGWSinglesig**
18,500bc1qkz55x35wlnrkrn5n0nq4wwsme9vszrwavu5qf4Singlesig
18,320bc1qlhpkdeaaa345c4dw90hmvm3nn2r32f9jdj2v2pSinglesig
17,969bc1qtrxc0use4hlm7fl0j6t37z7qlwl5eppj8lywz6Singlesig
17,945bc1qhk0ghcywv0mlmcmz408sdaxudxuk9tvng9xx8gSinglesig
17,928bc1qcdqj2smprre85c78d942wx5tauw5n7uw92r7wrSinglesig
16,858bc1q5vwscmf85w2vlq0qvr33dgpvu5rlrd42cqw6qnSinglesig
16,6103FupZp77ySr7jwoLYEJ9mwzJpvoNBXsBnE2-of-3 Multisig
16,453bc1qx2x5cqhymfcnjtg902ky6u5t5htmt7fvqztdsm028hkrvxcl4t2sjtpd9l2-of-2 Multisig
16,34834HpHYiyQwg69gFmCq2BGHjF1DZnZnBeBPUnknown
16,3071BAuq7Vho2CEkVkUxbfU26LhwQjbCmWQkDSinglesig
16,2271N4WQbt63gnThPwHFZ1w9adEnE1xB8ctXkSinglesig
16,231bc1qchctnvmdva5z9vrpxkkxck64v7nmzdtyxsrq64Singlesig
16,2241932eKraQ3Ad9MeNBHb14WFQbNrLaKeEpTSinglesig
15,90032TiohXoCmHr87xVm3E9A3sLiWBJjYn1gf4-of-6 Multisig
15,7463JZq4atUahhuA9rLhXLMhhTo133J9rF97jSinglesig
15,3921GR9qNz7zgtaW5HwwVpEJWMnGWhsbsieCGSinglesig
15,2511KDWnWQNSGZZ8QHcKPgzz3DGRkmgVv9HhJSinglesig
14,676bc1qvhxafz8dqk8c25jsx669yd6qrxhl5dx72dyrypSinglesig
14,59935pgGeez3ou6ofrpjt8T7bvC9t6RrUK4p62-of-3 Multisig
14,0001BZaYtmXka1y3Byi2yvXCDG92Tjz7ecwYjSinglesig
13,8053NpXph8WN1U9hwXjg1bRtzTff1tPR2Gpw4Unknown
13,003bc1q4vxn43l44h30nkluqfxd9eckf45vr2awz38lwaSinglesig
12,8911KVpuCfhftkzJ67ZUegaMuaYey7qni7pPjSinglesig
12,8581CiAnTJn6eHTU89PeihdMhT7KcQZxVZ4fySinglesig
12,8403BMEXqGpG4FxBA1KWhRFufXfSTRgzfDBhJ3-of-4 Multisig
12,8033HfD4pvF43jdu9dzVMEr1b8AnDHooRGc5t3-of-9 Multisig
12,7951DNUjpHPNKMoKYBHxJz2Sh1uQQdJkGsXj5Singlesig
12,2671PJiGp2yDLvUgqeBsuZVCBADArNsk6XEiwSinglesig
11,9851CKVszDdUp4ymGceAZpGzYEFr4RPNHYqaMSinglesig
11,6733A9qNS69dngSU2ak8BwZKEExeVnL2RqpYJUnknown
11,4001Cr7EjvS8C7gfarREHCvFhd9gT3r46pfLbSinglesig
11,115bc1qgrvchamnmmaancn3vwea6elnvexpylzh30rhjzSinglesig
10,840bc1qk7fy6qumtdkjy765ujxqxe0my55ake0zefa2dmt6sjx2sr098d8qf26ufn3-of-5 Multisig
10,771*1F34duy2eeMz5mSrvFepVzy7Y1rBsnAyWCSinglesig**
10,500bc1qhd0r5kh3u9mhac7de58qd2rdfx4kkv84kpx302Singlesig
10,486bc1q93njc4we4s088a2nz6c9e6vthc5h4ake53rxmdSinglesig
10,2171Q8QR5k32hexiMQnRgkJ6fmmjn5fMWhdv9Singlesig
10,009*1f1miYFQWTzdLiCBxtHHnNiW7WAWPUccrSinglesig**
10,002bc1qsxdxm0exqdsmnl9ejrz250xqxrxpxkgf5nhhtqSinglesig

*Likely lost

**Not using MPC

Out of these 81 addresses, at least six of them are holding bitcoin that is likely to be lost (179,302 BTC). These six addresses were created by their owners in 2010 or 2011, when bitcoin had a much smaller value and was not taken as seriously as it is today. Five of the six have never been spent from, and the other one made its last withdrawal in July of 2010.

The remaining 75 addresses use a variety of custody structures. Let’s break it down:

Addresses (%)Total Bitcoin Balance (%)
Singlesig53 (70.7%)1,745,905 (67.6%)
Multisig16 (21.3%)608,773 (23.6%)
Unknown6 (8.0%)226,205 (8.8%)

As explained in our article discussing institutional-grade threshold security, it’s likely that the 53 singlesig addresses are using either SSS or MPC. Two of the addresses, however, are unlikely to be using MPC, because they were created before 2018, when the first-ever MPC threshold protocols for ECDSA were invented. It’s possible that these addresses are using SSS instead.

The 16 addresses that we know are using multisig have all been spent out of, and in doing so they have revealed their specific quorum structure. There is a wide assortment of quorums:

  • 4 instances of 3-of-5
  • 3 instances of 2-of-3
  • 2 instances of 2-of-2
  • 1 instance of 3-of-9
  • 1 instance of 4-of-8
  • 1 instance of 3-of-8
  • 1 instance of 4-of-6
  • 1 instance of 3-of-6
  • 1 instance of 2-of-6
  • 1 instance of 3-of-4

The 2-of-2 quorums stand out as the only quorums in the list which don’t offer inherent protection from single points of failure. While a distributed 2-of-2 multisig can protect against theft, it requires other methods to protect against loss (such as each key using distributed SSS or MPC shares). You can read more about how different quorums protect from theft and loss to varying degrees, in our broader multisig article.

Conclusions

After looking at the data, at least one thing is clear. Among the owners of the wealthiest bitcoin addresses—some of whom include the biggest cryptocurrency exchanges and even the U.S. Department of Justice—there is no consensus on the best method to secure bitcoin. 

Some of these entities use multisig addresses, with typical quorums like 2-of-3 and 3-of-5, but there are several unusual quorums as well. Many entities use singlesig addresses, which could be utilizing SSS or MPC. The details surrounding SSS or MPC threshold quorums are never publicly recorded on the blockchain, limiting the extent of this investigation. It’s possible that some of these singlesig addresses are not employing any threshold security at all, which would mean that certain stashes of bitcoin currently worth more than $400M are notably under-secured.

As we covered in a recent article, multisig always has a higher security ceiling than singlesig. When a singlesig address is used (as is the case with at least 70% of the addresses holding more than 10,000 BTC) there is a missed opportunity for additional security. While singlesig does provide some benefits for spending convenience and transaction fees, one might expect these benefits to be less important than security, for an entity holding bitcoin worth millions or billions of dollars. 

The truth behind why singlesig addresses are so commonly found at the top levels is unclear. It may amount to a lack of education, or a historical lack of products and services leveraging the combination of SSS and MPC alongside multisig. Luckily, Unchained has pioneered a simple path to access these combinations, unlocking the highest levels of security obtainable. For private wealth and enterprise clients, we offer a vault product built with a foundation of multisig, and keys that can be spread amongst institutional key agents. Each of these key agents can deploy their own threshold security using SSS or MPC. Book a free consultation!

Sign up to get notified for future blog articles.