Key Takeaways
- Attackers compromised a team account to seize control of the Bonk.fun domain and deploy a malicious script.
- The exploit used a fake “Terms of Service” prompt to trick users into signing away their wallet contents.
- The breach was contained quickly, and users who interacted with the protocol via external terminals remained safe.
Some users report losses
Early Thursday, things took a turn for the Solana launchpad Bonk.fun when hackers managed to hijack their domain. It was a classic trap: the team’s account was compromised, and the site’s landing page was replaced with a fake ‘terms of service’ pop-up.
If you clicked ‘agree,’ you weren’t signing a contract—you were handing over your wallet. Some users reported losing over 50 SOL (about $7,500) before the team could sound the alarm on X.
The project’s lead, Tom, was quick to clarify that the smart contracts themselves are safe. If you connected your wallet but didn’t sign that shady prompt, you’re fine. It’s a brutal reminder that in the wild world of Solana memecoins, even a trusted site can become a ‘drainer’ in seconds if the web security slips.
Final Thoughts
Infrastructure is often the weakest link in DeFi. When a domain is hijacked, no amount of smart contract auditing can protect a user who signs a malicious transaction. Always verify prompts during a site update.
Frequently Asked Questions
Is the Bonk.fun website safe now?
The team is currently working to secure the domain; do not interact with the site until an official “all clear” is given on X.
How did people lose money?
Users signed a fraudulent “Terms of Service” prompt that was actually a wallet-draining transaction.
Are my existing Bonk tokens safe?
If you didn’t interact with the hijacked website during the breach, your assets should be secure.
