The team behind Bonk has confirmed that BonkDAO suffered a governance attack that resulted in the unauthorized transfer of an estimated $20 million worth of BONK tokens from its treasury.
According to a statement published by BonkDAO, the incident was caused by a malicious governance proposal that enabled the attacker to drain treasury-held BONK tokens. On-chain analysts reported that the stolen assets were subsequently transferred to a newly created entity identified as BONK 2.0 DAO, where a proposal titled “A New Chapter” was also created.
BonkDAO said it is actively investigating the incident and has begun coordinating with cryptocurrency exchanges, blockchain infrastructure providers, the Solana Foundation and law enforcement agencies in an effort to recover the stolen funds and identify those responsible.
The organization added that it has identified exchange wallets allegedly used to acquire BONK before the malicious governance proposal was submitted, suggesting investigators are examining whether the governance attack was planned in advance.
Investigation Focuses on Governance Process
Unlike traditional smart contract exploits, governance attacks target the voting mechanisms that decentralized autonomous organizations (DAOs) use to approve proposals and manage treasury assets.
In many DAOs, governance rights are determined by token ownership. If an attacker gains sufficient voting power—either by purchasing tokens, borrowing governance tokens, exploiting weaknesses in voting procedures or compromising governance mechanisms—they may be able to pass proposals that transfer treasury assets or alter protocol rules.
Related: Paxos Adds BONK to Regulated Brokerage Platform
BonkDAO has not yet disclosed the precise technical mechanism that allowed the proposal to pass or whether vulnerabilities existed within its governance framework.
The organization also has not confirmed whether the reported $20 million reflects the market value of the tokens at the time of the incident or the current valuation.
Recovery Efforts Underway as DAO Security Comes Into Focus
Following the attack, BonkDAO said it is working with centralized exchanges, blockchain bridges and the Solana Foundation to monitor fund movements and explore potential recovery options.
The involvement of exchanges could help identify wallets if attackers attempt to convert or liquidate the stolen assets through regulated platforms. However, recovering cryptocurrency stolen through governance exploits can be difficult, particularly if funds are rapidly transferred across multiple wallets or decentralized protocols.
Related: Small Meme Coins That Could Explode Next (2026): A Data‑Driven Outlook
The incident highlights the continuing security challenges facing decentralized governance systems, where treasury management relies on transparent, on-chain voting rather than centralized administration.
Governance attacks have become an increasingly important area of risk within decentralized finance (DeFi), prompting many protocols to introduce additional safeguards such as voting delays, multi-signature approvals, quorum requirements and emergency veto mechanisms for high-value treasury transactions.
At the time of publication, BonkDAO had not announced whether treasury governance would be temporarily suspended or whether any proposals to strengthen its governance process would be introduced following the investigation.















