BonkDAO, the community governance body behind Solana’s flagship memecoin BONK, lost approximately $20 million in tokens after an attacker pushed through a malicious governance proposal. The exploit, reported on July 6, targeted the DAO’s on-chain voting mechanisms on the Realms platform, effectively turning the protocol’s own democratic infrastructure into a weapon against it.
How the attack unfolded
The exploit followed a pattern that’s become disturbingly familiar in decentralized governance. The attacker reportedly used exchange wallets to accumulate a large position in BONK tokens ahead of submitting the malicious proposal. With enough voting power concentrated in their hands, the proposal passed through BonkDAO’s governance framework and authorized the transfer of treasury funds.
BonkDAO has historically managed around 15-16% of the total BONK token supply through its governance structure. That’s a massive honey pot sitting behind what amounts to a majority-rules voting system, and this attack demonstrated exactly why that combination keeps security researchers up at night.
Multiple protocols across Solana and other chains have suffered similar governance manipulation attacks throughout 2025 and into 2026. Flash loan exploits, where an attacker borrows a massive amount of tokens for a single transaction block to swing a vote, have been particularly popular. Whether this specific attack used flash loans or relied on a more patient accumulation strategy through exchange wallets is still under investigation.
The response and recovery effort
BonkDAO moved quickly to contain the fallout. The DAO has initiated a full investigation and says it has already identified exchange wallets involved in the pre-proposal accumulation of BONK tokens. That’s a meaningful lead, since exchange-based wallet activity often comes with KYC data that can be subpoenaed.
Law enforcement authorities have been notified, according to BonkDAO. The organization is also collaborating with cryptocurrency exchanges, bridges, and the Solana Foundation to trace the stolen funds and, ideally, freeze them before they’re laundered beyond recovery.
The identity of the attacker remains unknown as of now, and no timeline for potential recovery has been disclosed.
What this means for investors and the DAO landscape
A $20 million loss is painful for any protocol, but for a memecoin community treasury, it’s potentially existential. BonkDAO’s treasury served as the financial backbone for ecosystem development, partnerships, and community initiatives.
The attack vector here wasn’t some exotic zero-day vulnerability in a smart contract. It was the intended functionality of the governance system, used as designed but with malicious intent. Several potential countermeasures exist but remain underdeployed across the DAO ecosystem. Time-locked proposals that give token holders days or weeks to review and contest changes before execution could have prevented this. Quorum requirements tied to unique wallet participation rather than raw token volume would make accumulation attacks more expensive. Veto mechanisms, multisig oversight layers, and conviction voting models all offer various degrees of protection.
For BONK specifically, the loss of 15-16% of total supply from coordinated treasury management to an attacker’s wallet could create significant selling pressure if those tokens hit the open market.
Disclosure: This article was edited by Editorial Team. For more information on how we create and review content, see our Editorial Policy.

2 hours ago
18









English (US) ·