// ALTCOINS

Solana Meme Coin Bonk Treasury Drained of $20 Million in ‘Malicious’ Governance Attack

By Lysias · July 7, 2026

Key Takeaways

What Happened to BonkDAO’s Treasury

BonkDAO, the decentralized autonomous organization connected to the Bonk meme coin on Solana, said it was targeted by a malicious governance proposal that led to an estimated $20 million being drained from its treasury, according to Decrypt. The project described the episode as a “drain” in its own public statements, and Decrypt reports the incident occurred at around 4:00 a.m. ET on Monday.

Per Decrypt, the mechanism behind the theft was a governance proposal titled “Sowellian BonkDAO,” formally logged as Bonk Improvement Proposal #76. The proposal’s stated goals, as cited by Decrypt, included implementing what it called “Sowellian governance,” installing new members and a new council, rebuilding the DAO structure, monetizing its holdings, and halting further losses. Embedded within that proposal was a second instruction that authorized the transfer of treasury funds, and it was this instruction that resulted in more than 4.4 trillion BONK tokens — valued at $19.3 million at the time Decrypt reported the story — moving from the DAO’s treasury wallet to an address ending in “JHvQ.”

Decrypt notes that the proposal had also promised BONK tokens to anyone who voted “yes” on it, but the tokens that ended up in the “JHvQ” wallet were never distributed to those voters. Instead, according to Decrypt, the funds were moved again around 3:30 p.m. ET the same day to a separate Solana wallet ending in “eh42.” Solscan, the Solana blockchain explorer cited by Decrypt, identified the “JHvQ” wallet as having been funded through a Bybit account, giving investigators a potential lead as they trace the flow of funds.

How BonkDAO and Exchanges Are Responding

In statements posted on X and referenced by Decrypt, the team behind Bonk said it is coordinating with centralized exchanges, network bridges, and the Solana Foundation to manage the fallout. The project stated that during its investigation it identified the exchange wallets that were used to purchase BONK ahead of the proposal being submitted — a detail that suggests the attacker may have accumulated tokens in advance to help push the malicious proposal through the DAO’s voting process. BonkDAO also said law enforcement has been notified and that it continues working with relevant parties in an effort to recover the funds and identify those responsible, according to Decrypt.

The incident has already prompted action from exchanges. Decrypt reports that South Korean exchange Upbit and U.S.-based exchange Kraken have both paused deposits and withdrawals of BONK. Upbit’s reasoning, as cited by Decrypt, pointed to user protection measures following the security incident. These pauses are a standard defensive step exchanges take when a token’s supply or ownership record may be compromised, since it limits the ability of an attacker to quickly cash out stolen tokens through major trading venues.

For everyday holders of BONK, the episode is a reminder that governance systems built to give communities control over a project’s treasury can also become an attack surface. If a malicious actor can accumulate enough voting power or tokens ahead of a proposal, they may be able to push through instructions that authorize fund transfers without the broader community fully grasping the consequences until after execution. This matters beyond Bonk specifically, since many DAO-governed projects across crypto rely on similar proposal-and-vote mechanisms to manage shared treasuries.

Market Impact and What It Means for Holders

BONK, which Decrypt notes was once ranked among the top 100 cryptocurrencies by market capitalization, has fallen approximately 7% over the past 24 hours to trade around $0.0000043. That price sits roughly 93% below the token’s all-time high of $0.000058, according to figures cited by Decrypt. While meme coins are known for volatility independent of any single event, a treasury exploit of this scale adds a layer of uncertainty for holders who may now be watching whether exchanges extend their deposit and withdrawal pauses, and whether any of the drained tokens are recovered or dumped onto the market.

For everyday users, the practical takeaway is that governance-related risks are not purely theoretical. A DAO’s treasury, even one holding a widely traded meme token, can be emptied through a vote if bad actors game the process. Until BonkDAO and its partners provide further updates, the safest posture for holders is to rely on official statements from the project and monitor exchange notices directly rather than assume normal trading conditions will resume immediately.

Hype Check

Claim: BonkDAO’s treasury was drained of about $20 million in a malicious governance attack, as described in the project’s own statements and reported by Decrypt. Reality: Decrypt’s reporting confirms the transfer of more than 4.4 trillion BONK tokens worth roughly $19.3 million out of the treasury via a passed governance proposal, followed by a further transfer to another wallet, alongside exchange-level responses from Upbit and Kraken and a roughly 7% price decline. Verdict: Substance. This is not financial advice.

Source

Researched with AI assistance, fact-checked and edited by a human. Not financial advice.

📬 Get Cryptoverse Weekly

The week’s most important crypto & AI stories, straight to your inbox. No spam, unsubscribe anytime.

Double opt-in — we’ll email you a confirmation link.