BONK Governance Hacked: A $4M Vote Bought a $20M Exit
A governance attack on the BONK memecoin treasury has exposed one of decentralised finance's oldest vulnerabilities: when votes are for sale, so is everything else.
BONK Governance Hacked: A $4M Vote Bought a $20M Exit
A governance attack on the BONK memecoin treasury has exposed one of decentralised finance's oldest vulnerabilities: when votes are for sale, so is everything else.
According to CoinDesk, an attacker spent approximately $4 million acquiring enough BONK tokens to pass a malicious governance proposal, then used that manufactured majority to transfer the project's treasury — worth around $20 million — to a wallet under their control. The selling began immediately.
The mechanics are straightforward and brutal. BONK, built on Solana and one of the more prominent meme tokens by market capitalisation, operates a community treasury governed by token holders. Whoever holds enough tokens holds the keys. The attacker didn't break the protocol. They used it exactly as designed.
This is the governance paradox that has haunted decentralised autonomous organisations since the concept emerged: a system built to resist centralised control becomes trivially capturable by anyone with sufficient capital and low enough scruples. Democracy, when tokens are the ballot, is only as secure as the cost of buying a majority.
The incident arrives as Bitcoin pulls back from a run at $64,400, with broader crypto markets already absorbing pressure from a missile strike on a Qatari gas vessel in the Strait of Hormuz. BONK holders now face a simpler problem: the treasury is gone, and the proposal passed legally.
The protocol worked perfectly. That was always the risk.