BONK DAO has confirmed that attackers exploited its governance system to drain an estimated $20 million worth of BONK tokens from the project's treasury, highlighting the growing security risks facing decentralized governance.
According to the project's statement, the exploit was carried out through a malicious governance proposal that successfully passed after the attacker accumulated enough voting power to influence the outcome. Investigators believe the individual or group behind the attack spent roughly $4 million worth of BONK to acquire the votes needed for the proposal's approval on Solana's Realms governance platform.
Following the treasury drain, the stolen tokens were reportedly transferred across multiple wallets, with a portion already moving toward cryptocurrency exchanges.
In response, BONK DAO said it is working alongside centralized exchanges, the Solana Foundation, blockchain bridge operators, and law enforcement agencies to trace the stolen assets and explore possible recovery options. The team also stated that it has identified exchange wallets allegedly used to accumulate voting power before the proposal was executed.
The incident has reignited debate over governance security in decentralized autonomous organizations (DAOs). While token-based voting is designed to decentralize decision-making, it can also expose protocols to governance attacks if bad actors acquire sufficient voting power to pass malicious proposals.
As the investigation continues, the exploit serves as another reminder that robust governance safeguards are just as critical as smart contract security. Market participants will be watching closely to see whether any of the stolen funds can be frozen or recovered and whether BONK DAO introduces stronger protections to prevent similar attacks in the future. #solana


