Bonk.fun Hack Exposes Solana Users to Wallet Drainer Attack

TheNewsCrypto2026-03-12 tarihinde yayınlandı2026-03-12 tarihinde güncellendi

Özet

A security vulnerability on the Bonk.fun platform exposed Solana users to wallet drainer attacks. Malicious scripts were injected into the site, redirecting users to phishing pages that prompted them to approve transactions. These approvals allowed attackers to automatically drain tokens from users' wallets. The platform, which is used for meme token trading, was compromised, and users were deceived through fake reward claims and interface changes. Bonk.fun issued a warning on X, advising users not to interact with the site until it was secured. The developer team acted quickly to remove the malicious scripts and urged users to revoke any suspicious approvals. The incident raised concerns in the crypto community, though the prompt response helped mitigate potential damage.

The security vulnerability on Bonk.fun allowed malicious wallet drainer links to affect users who were not aware of the danger. Additionally, security experts detected the vulnerability after users encountered suspicious approval prompts while interacting with the Bonk.fun platform. The attacker injected malicious scripts to redirect users to phishing sites that demanded approvals from their connected wallets. These approvals allowed the malicious programs to drain the users’ tokens automatically from their wallets to the attacker’s addresses.

The exploit raised several concerns in the Solana ecosystem. The Bonk.fun is a site that interacts with the trading of meme tokens and the Decentralized Finance community. The attackers tried to deceive users by mimicking reward claims and token distribution through malicious interface changes. After the users accepted the request, the drainer would drain the assets from the users’ wallets within a matter of seconds.

The official X post of Bonk.fun said, “A malicious actor has compromised the BONKfun domain. Do not interact with the website until we have secured everything.”

Platform Response and Community Warnings

The developer community reacted quickly after the news became public. And immediately removed the malicious scripts that affected the Bonk.fun interface. The developer team immediately reviewed all integrations and external scripts associated with the interface that attackers might have exploited. The platform operators immediately alerted users to revoke any approvals made by malicious tokens. And to avoid clicking on unknown links shared in crypto-related groups. Blockchain investigators are closely monitoring the attacker’s wallets and all transactions associated with the exploit campaign.

Tom, the operator of Bonk.fun explained the issue on his X post. He expressed his answers saying, “We understand a lot of people are scared and rightly so, but we’re doing everything in our power to fix the situation.”

The crypto market took the incident seriously, as security vulnerabilities are a major concern for investors and affect the overall market sentiment. Meanwhile, market sentiment toward new meme token markets remained cautious. However, analysts argued that the quick response from the developer community could help limit potential damage. The potential damage that might be caused by a security incident involving a decentralized interface. The users of the Bonk interface alerted each other through social media networks, warning them of the phishing approvals that are being made by malicious tokens associated with the interface.

Highlighted Crypto News:

Metaplanet Launches Venture Arm to Expand Bitcoin Ecosystem Amid Market Volatility

İlgili Sorular

QWhat was the security vulnerability on Bonk.fun that affected Solana users?

AThe security vulnerability on Bonk.fun allowed malicious wallet drainer links to be injected, which redirected users to phishing sites. These sites then prompted users for approvals from their connected wallets, enabling malicious programs to automatically drain tokens from their wallets to the attacker's addresses.

QHow did the attackers deceive users on the Bonk.fun platform?

AThe attackers deceived users by mimicking reward claims and token distribution through malicious interface changes. After users accepted the approval requests, the drainer would drain the assets from their wallets within seconds.

QWhat was the official response from Bonk.fun regarding the domain compromise?

AThe official X post of Bonk.fun warned users, stating: 'A malicious actor has compromised the BONKfun domain. Do not interact with the website until we have secured everything.'

QWhat actions did the developer community take after the Bonk.fun exploit was discovered?

AThe developer community quickly removed the malicious scripts affecting the Bonk.fun interface, reviewed all integrations and external scripts for potential exploits, and alerted users to revoke any approvals made by malicious tokens and avoid clicking on unknown links.

QHow did the crypto market and community react to the Bonk.fun security incident?

AThe crypto market took the incident seriously as security vulnerabilities are a major concern for investors, affecting overall market sentiment. Users alerted each other through social media networks about phishing approvals, while analysts noted that the quick response from developers helped limit potential damage.

İlgili Okumalar

Bitcoin Could Strengthen US National Security, Top Military Commander Says

US lawmakers advocate for domestic Bitcoin mining equipment production, citing national security risks from foreign hardware dependence. Admiral Samuel Paparo, commander of US Indo-Pacific Command, testified to the Senate Armed Services Committee that Bitcoin is a tool for "power projection" and cybersecurity. He emphasized Bitcoin's proof-of-work system as a costly deterrent against network attacks, aligning it with US national power instruments. This echoes earlier military perspectives, like US Space Force's Jason Lowery, who argued Bitcoin's utility beyond finance. The hearing also addressed cyber threats, including North Korea's crypto theft for weapons funding. While the US leads in Bitcoin holdings and mining, reliance on overseas-manufactured mining hardware remains a vulnerability.

bitcoinist4 dk önce

Bitcoin Could Strengthen US National Security, Top Military Commander Says

bitcoinist4 dk önce

Pundit Shows How XRP’s Performance Has Outpaced Hedge Funds

Crypto pundit Vandell highlights XRP's significant outperformance compared to hedge funds since its launch. From its 2014 low of $0.0028 to a 2025 all-time high of $3.64, XRP delivered a return of roughly 129,900%. Even from its 2020 low of $0.11, it surged 33x in five years. Vandell states that utility and adoption are merely "icing on the cake," asserting that XRP's value will appreciate over time as long as the money supply increases. He also suggests that regulatory clarity, such as the potential passage of the CLARITY Act, could trigger historic institutional inflows. While acknowledging it could take years or decades, Vandell believes XRP could reach $1,000 due to its limited supply and sustained demand from fiat debasement and investor accumulation. At the time of writing, XRP is trading around $1.44.

bitcoinist3 saat önce

Pundit Shows How XRP’s Performance Has Outpaced Hedge Funds

bitcoinist3 saat önce

Liquidity Forecasts Show Ozak AI Reaching a $1.5 Billion Fully Diluted Valuation Soon After Launch

Updated liquidity forecasts indicate that Ozak AI is positioned to reach a fully diluted valuation (FDV) of $1.5 billion shortly after its initial exchange listings. With over $6.8 million raised in its presale—priced at $0.014 per token—and more than 1.17 billion tokens already sold, the project has demonstrated strong early capital formation, reducing downside risk during price discovery. Analysts highlight that Ozak AI’s concentrated early supply and capital-efficient structure could allow smaller liquidity injections to drive significant valuation expansion, potentially bypassing lower valuation ranges entirely. The project’s AI-native infrastructure—including Prediction Agents, the Ozak Stream Network, Data Vaults, EigenLayer integration, and Arbitrum Orbit deployment—supports higher valuation multiples by offering tangible utility rather than speculative appeal. Partnerships with Pyth Network, SINT, HIVE Intel, and Weblume further strengthen liquidity confidence and exchange adoption prospects. With robust presale performance, functional AI infrastructure, and favorable liquidity dynamics, Ozak AI is emerging as a liquidity-driven growth asset with the potential for rapid post-launch valuation scaling.

TheNewsCrypto7 saat önce

Liquidity Forecasts Show Ozak AI Reaching a $1.5 Billion Fully Diluted Valuation Soon After Launch

TheNewsCrypto7 saat önce

Exchange Exposure Could Push Ozak AI’s Daily Volume Beyond $500 Million Within the First Trading Month

Ozak AI ($OZ) is positioned to capitalize on market shifts from established altcoins to innovative AI-driven projects. With a successful presale raising over $5 million and strong token distribution, the project is expected to achieve significant trading volume upon exchange listing—potentially exceeding $500 million daily within the first month. Key factors driving this outlook include concentrated early investor interest, AI and DePIN utility, and strategic partnerships enhancing functionality and credibility. Unlike hype-driven tokens, Ozak AI’s real-world use cases in staking and ecosystem integrations support sustained trading activity beyond initial speculation.

TheNewsCrypto8 saat önce

Exchange Exposure Could Push Ozak AI’s Daily Volume Beyond $500 Million Within the First Trading Month

TheNewsCrypto8 saat önce

Clarity Act Reaches Critical Juncture: The U.S. Crypto Regulatory Crossroads

The U.S. cryptocurrency regulatory landscape faces a historic turning point in spring 2026. The fate of the CLARITY Act, which aims to establish a comprehensive market structure framework for digital assets—hangs in the balance. If it fails to clear the Senate Banking Committee by late April, its chances of passage drop drastically, potentially delaying U.S. crypto legislation for years. Simultaneously, the GENIUS Act is reshaping the stablecoin market through stringent prudential regulations, including AML/CFT compliance and reserve requirements, favoring major compliant players like USDC and Tether’s new USAT. A key political compromise led by Senators Tillis and Alsobrooks addresses contentious issues like stablecoin yields, though critical implementation details remain unresolved. The White House strongly supports the legislation as part of a strategy to make the U.S. a global crypto hub, but political challenges—including midterm elections and cross-party demands—threaten its progress. If passed, the CLARITY Act could unlock trillions in institutional capital and help the U.S. compete with the EU’s MiCA framework. If stalled, global regulatory leadership may shift to Europe and Asia. Regardless of outcome, regulatory clarity and compliance infrastructure are becoming central to competitive advantage in the crypto industry.

marsbit8 saat önce

Clarity Act Reaches Critical Juncture: The U.S. Crypto Regulatory Crossroads

marsbit8 saat önce

İşlemler

Spot

Futures