Key Takeaways:
BonkDAO, the DeFi initiative behind the BONK memecoin, has announced a large-scale security flaw which led to the loss of about $20M of its tokens. The attack was conducted via a malicious governance proposal, creating new worries about governance security members of decentralized ecosystems.
BonkDAO was the target of a malicious governance proposal resulting in an estimated $20M worth of BONK tokens being drained from the BonkDAO treasury.
During the investigation, BonkDAO identified the exchange wallets used to purchase BONK ahead of the proposal. BonkDAO is…
— BONK!!! (@bonk_inu) July 6, 2026

After an internal investigation, the team stated that exchange wallets had been identified that had been used to build up BONK ahead of the proposal triggering. Although no explanation of how the proposal bypassed governance controls was found at BonkDAO, it is evident he could have manipulated the vote in advance by smartplanning his tokens.
It has been actively engaged in coordinating with the crypto exchanges, VCs, video domain developers and the Solana Foundation to track funds and stop more transfers whenever possible, the project said.
Enforcement authorities have also been notified and BonkDAO is still on its way to refunding funds and determining the fallout.
Read More: Taiko Bridge Hack Drains $1.7M

It has also led to a partnership among several entities in the Solana space in an effort to trace the stolen tokens.
According to BonkDAO, wallets connected to exchanges were involved in purchasing BONK before the malicious proposal was submitted. Those transactions are now a central part of the investigation as the DAO works with industry partners to reconstruct the attack and follow the movement of the stolen tokens.
Neither the identities of the exchanges nor the suspected attacker have been disclosed. BonkDAO also has not announced whether any portion of the stolen assets has been frozen or recovered. The DAO said additional updates will be shared as the investigation progresses.
Read More: $290M KelpDAO Hack SHOCK: LayerZero Points to Fatal DVN Flaw, Lazarus Suspected
Governance attacks are different from typical exploits for smart contracts, as they disrupt the voting systems of decentralized protocols. Through sufficient power in votes or exploiting governance weaknesses, attackers can successfully pass through proposals that steal treasury funds or change protocol rules.
Once governance funds are on-chain, it’s easy to see why such systems can be enticing targets as in the BonkDAO case.
Launched in late 2022, one of the biggest memecoins in the Solana Ecosystem is BONK, which uses a community governance model to decide on treasury allocation and ecosystem development. Effective governance mechanisms and proposal review protocols are now more essential than ever to protect the community’s interests and assets managed by decentralized organizations.
The post BonkDAO Hit by $20M Treasury Hack After Malicious Governance Proposal Rocks BONK Holders appeared first on CryptoNinjas.