All hash functions are vulnerable to quantum attack by Grover's algorithm, which provides a quadratic speedup for inverting the output of the hash function.
I've tinkered around with grovers algorithm. It's game changing but not breaking, if that makes sense?
Some ghetto math here but this is some basic results from my testing.
on a rtx 3090, in 5 minutes
36 billion hashes
using grovers on my cpu in 5 minutes.
540 billion hashes
using a cheap mining rig in 5 minutes.
33,000 trillion hashes
See the numbers are interesting. Also grovers deals in probability. So it's not fool proof. Some times, even when i feed it data with a known valid header it misses it.
Grovers is cool for sure, but only a small part of a much bigger puzzle that must be solved before quantum algorithms truly change the game. Our quantum algorithms just aren't there yet. Some would claim we are decades away, others believe we are just around the corner. I do know one thing though, if someone did figure this quantum computing thing out, bitcoin is for sure the low hanging fruit for testing. It ticks all the boxes.