BONK DAO lost roughly $20 million from its treasury late Monday after an attacker spent about $4.4 million to buy just over 1% of BONK's supply, hit the governance quorum and passed a proposal that wired the treasury's tokens to a wallet they controlled. The proposal, BIP #76 ("Sowellian BonkDAO"), passed on a 2.9% turnout with seven wallets voting yes against more than 18,000 non-voters. Of those seven, one attacker-controlled wallet effectively cast the binding vote: it cleared the quorum margin of 882.38 billion BONK against a 879.95 billion threshold, voted its entire stake in favor and triggered the automatic onchain transfer of 4.43 trillion BONK out of the treasury.
Why it matters
The attack worked because BONK DAO's quorum threshold is a fixed percentage of total supply, not a fraction of participating voters, and the proposal market has been quiet enough to make that quorum cheap. Buying the required BONK cost about $4.4 million, which fetched roughly five times the value of the treasury it then unlocked. Each step was a valid onchain transaction: the token buy on Bybit and Binance, the borrowed stake via DeFi lending, the governance vote, the payout. The attacker even began selling the $5.3 million worth of BONK it had accumulated for the vote within an hour of the drain, collecting that back while keeping the treasury haul. BONK DAO has confirmed the incident and is coordinating with exchanges, bridges and the Solana Foundation on the fallout.
Market impact
The immediate effect is on memecoin governance, not just BONK. Any low-turnout DAO with a small-quorum, token-weighted vote is now on notice that its treasury price equals the cost of buying the quorum. Chainalysis has traced the drain and roughly $188,000 was moved to an exchange within nine hours; the remaining $19 million sits in a multisig the attacker controls. The incident has reopened an old sector argument over whether token-quorum drain is theft or just an exploit of rules everyone agreed to. For BONK holders it is also a reminder that the token's price and its DAO's treasury are different bets, and that the governance layer now needs to be priced into the trade.
Frequently asked questions
-
How did the attacker drain BONK DAO's treasury?
They spent about $4.4M to buy just over 1% of BONK's supply, which was the quorum threshold for governance proposals. They then voted their entire stake in favor of BIP #76, which automatically transferred 4.43 trillion BONK from the treasury to their wallet.
-
Why did the malicious proposal pass?
BONK DAO's quorum requires yes votes equal to 1% of total supply, not 1% of participating voters. With turnout at 2.9% and only seven wallets voting, the attacker's 882.38 billion BONK cleared the 879.95 billion threshold by a narrow margin.
-
How much did the attacker spend versus what they took?
Roughly $4.4M to buy the quorum stake, against about $20M in treasury tokens drained. They also began selling the $5.3M worth of BONK they had bought for the vote within an hour of the drain, recouping that portion too.
-
Is this legally theft if every step was a valid transaction?
That is the open debate. BONK DAO, Chainalysis and law enforcement are treating it as an attack; some onchain commentators argue it is just exploitation of poorly written governance rules. No charges have been announced.
-
What is BONK DAO doing about the $20M drain?
The DAO confirmed the attack, identified the exchange wallets used to buy tokens ahead of the vote, and said it is coordinating with exchanges, bridges and the Solana Foundation to manage the fallout. The drained tokens are now in an attacker-controlled multisig.
CoinDesk