Loading prices…
🩸BEARISH

BONK drained: $20M lost in BonkDAO governance attack

The exploit rode a passed proposal through BonkDAO's own voting mechanism, a structural hit that turns governance itself into the attack surface.

BonkDAO lost roughly $20 million worth of BONK tokens after a malicious governance proposal was passed and executed, siphoning treasury funds out of the protocol. The BonkDAO X account confirmed the drain, and the stolen BONK has already been tracked moving toward centralized exchanges.

South Korea's Upbit suspended BONK deposits and withdrawals in response, a standard move when an asset is actively being laundered through a venue's order book. Other exchanges that list BONK are likely to follow if the trail continues to land on their platforms.

Why it matters

Governance attacks are a different species of exploit from a smart-contract bug. The code did exactly what it was designed to do; a proposal reached quorum and was executed. The attacker either accumulated enough voting power directly or rented it through a flash-loan-style delegation, depending on the final post-mortem. Either way, the surface the protocol has to defend is now the proposal pipeline itself, not the contracts.

Market impact

A $20M drain is meaningful for a mid-cap meme-token treasury. Sell pressure on BONK is the immediate read, but the broader signal is that any DAO running low-cost governance with thin delegate participation is exposed to the same playbook. Watch for the post-mortem on whether quorum thresholds or timelock delays were the failure point.

Related tokens
$BONK

Frequently asked questions

  1. How did the BonkDAO attack work?

    A malicious governance proposal was passed and executed, draining roughly $20M in BONK from the protocol treasury. The exploit rode the protocol's own voting mechanism rather than a smart-contract bug.

  2. Which exchanges have responded to the BonkDAO drain?

    South Korea's Upbit suspended BONK deposits and withdrawals after stolen BONK was tracked moving toward centralized exchanges. Other BONK venues are likely to follow.

  3. What is a governance attack in DeFi?

    A governance attack exploits a DAO's voting mechanism by passing a malicious proposal, often using rented or flash-loaned voting power. The code executes exactly as designed, which makes it harder to defend than a typical smart-contract bug.

  4. How much BONK was lost in the BonkDAO exploit?

    Approximately $20 million worth of BONK tokens were drained from the BonkDAO treasury, according to the project's official X account.

  5. What should BONK holders watch after the exploit?

    The post-mortem on quorum thresholds and timelock delays is the key read, alongside continued exchange deposit suspensions and any sell pressure as stolen tokens move through order books.

Source attribution
Aggregated from TheBlock · Verified · Last refreshed 2h ago
Open original →