Flash News

BonkDAO Faces Malicious Governance Proposal Attack, $20 Million in BONK Stolen

BonkDAO disclosed that it suffered a malicious governance proposal attack, resulting in approximately $20 million worth of BONK tokens being stolen from the DAO treasury.

During the investigation, the attacker was identified using an exchange wallet to purchase BONK before initiating the proposal. The team is currently collaborating with exchanges, cross-chain bridges, and the Solana Foundation to trace the funds.

The team has notified law enforcement and continues to work with relevant parties to recover the funds and track down the responsible individuals.

Source: Public Information

ABAB AI Insight

BonkDAO, as a governance organization for the Solana ecosystem meme coin community, previously managed treasury funds through community proposals. This malicious governance proposal attack exposed vulnerabilities in the DAO's proposal review, voting thresholds, and fund execution processes, similar to governance attacks faced by several other Solana-based DAOs.

In terms of capital flow, the attacker accumulated BONK on exchanges in advance and initiated a malicious proposal to transfer treasury funds, exploiting the characteristics of governance processes that are transparent but have weak execution controls for quick cashing out. The team relies on on-chain tracking and cross-entity cooperation for recovery, highlighting the vulnerability of DeFi governance in combating Sybil attacks and proposal manipulation.

This incident is reminiscent of several malicious proposal or treasury theft cases in DAOs between 2022-2024 (such as governance attacks on certain yield farming projects). Currently, Solana meme coin DAOs are in a high-risk phase where high liquidity does not match governance maturity.

Essentially, this represents capital concentration in technological alternatives: DAO governance simplifies decision-making but lowers the threshold for attacks. Post-incident, funds tend to flow towards protocols with strict audits and more mature mechanisms, while small and medium community DAOs face ongoing security pressures.

ABAB News · Cognitive Law

The higher the governance transparency, the larger the attack window for malicious proposals.
Treasury security has never been a DAO slogan, but rather the ultimate result of mechanism design.
Rapid accountability and cross-chain cooperation are the only pathways for fund recovery after DeFi incidents.

Source

·ABAB News
·
2 min read
·2d ago
分享: