The domain of the Solana-based memecoin launchpad Bonk.fun was compromised after attackers gained access to a team account and used the site to deploy a wallet-draining scheme.
In a post on X early Thursday, the Bonk.fun team warned users not to interact with the platform while efforts were underway to secure the domain. “A malicious actor has compromised the BONKfun domain, do not interact with the website until we have secured everything,” the project wrote.
An X user known as Tom, identified as an operator behind Bonk.fun, said the attackers used the compromised access to post a fake message intended to trick visitors into signing a malicious transaction that could drain their crypto wallets.
In a follow-up post, Tom said the exploit targeted users who signed a fraudulent terms-of-service prompt that briefly appeared on the compromised website of Bonk.fun. He noted that users who had previously connected their wallets to the platform were not affected, and traders interacting with BONK-related tokens through external terminals remained safe.
Some users report losses
Despite the warning, several users reported losses in replies to the posts. One individual claimed that roughly 50 Solana (SOL) had been drained from their wallet, while another said they lost about 10 SOL. Additional users reported varying amounts of losses.
Tom said the breach was quickly contained and that the total losses reported so far appear limited. “We understand a lot of people are scared — and rightly so — but we’re doing everything in our power to fix the situation,” he added.
