CASABLANCA, July 6, 2026
BonkDAO said a malicious governance proposal drained an estimated $20 million worth of BONK from its treasury on Monday, sending the Solana meme coin lower in the latest sign that DAO voting systems can become a direct attack surface.
The incident hit BonkDAO, the community treasury tied to the BONK ecosystem, after a proposal moved through governance and authorized a transfer from the treasury. The DAO said it had identified exchange wallets used to buy BONK before the proposal and was coordinating with exchanges, bridges, the Solana Foundation and law enforcement.
Market snapshot: CoinGecko showed BONK near $0.000004427, down about 6.9% over 24 hours, with a market value near $388 million and a 24-hour range between roughly $0.000004102 and $0.000004953 when checked by Daily Crypto Briefs on July 6. The same page showed BONK up about 4.1% over 30 days, meaning the attack landed after a short rebound rather than at a fresh monthly low.
BONK
BONKBonkDAO said it was “the target of a malicious governance proposal.” Crypto Briefing reported that the DAO also said law enforcement had been notified and that recovery efforts were underway.
The timing is important because the loss did not require a hacker to break BONK trading itself. It appears to have exploited the governance path that tells a treasury what to do, which can be just as consequential when a vote controls liquid assets.
For BONK holders, the immediate concern is not only the missing treasury balance. It is whether stolen tokens can be frozen before exchange liquidation, whether the attacker can repeat the pattern, and whether BonkDAO changes voting and execution controls before another large proposal reaches the treasury.
BonkDAO Treasury Lost $20M
BonkDAO’s statement put the estimated loss at $20 million worth of BONK. The DAO did not immediately publish a full transaction-by-transaction accounting, a final recovery total or a named suspect.
BeInCrypto reported that the attacker successfully passed a malicious proposal, allowing treasury funds to be transferred to wallets under the attacker’s control. The report said stolen tokens had started moving to cryptocurrency exchanges, raising urgency around freezes and coordination.
The DAO’s own statement adds one important investigative detail. It said exchange wallets used to purchase BONK ahead of the proposal had been identified. That does not by itself prove who controlled those wallets, but it gives exchanges and investigators a place to start.
BeInCrypto reported that preliminary analysis suggested roughly $4 million worth of BONK was used to secure enough voting power for the proposal. Daily Crypto Briefs could not independently verify that vote-power estimate before publication, so it should be treated as early analysis rather than a final postmortem figure.
The price action shows the market treating the event as a governance and liquidity shock. BONK’s 24-hour decline was smaller than the headline loss might imply, but the token’s market cap, meme-coin liquidity profile and exchange routing now matter more than ordinary chart support.
This is also different from the recent DeFi-vault exploit cycle. Daily Crypto Briefs covered Summer.fi’s roughly $6 million exploit alert earlier on Monday, where the open question was contract and vault exposure. BonkDAO’s question is whether token-weighted governance was allowed to move treasury assets too quickly.
Realms Vote Became Attack Route
The BonkDAO governance venue is visible through Realms, a Solana governance interface. Realms is not the same thing as the attacker, but the venue matters because users need to know whether the attack route was voting power, proposal execution, custody controls or some combination of those pieces.
In a token-weighted DAO, voting power can become an input cost. If an attacker can buy or borrow enough tokens, get a malicious proposal through and execute it before a review delay stops the transaction, governance becomes a route to treasury control.
That is the core risk in this case. A proposal can look like a normal administrative process until the actual execution moves assets. The attack does not have to exploit a pricing oracle or break a smart contract invariant if the governance contract already has authority to spend.
The comparison that matters is not only another meme coin. It is the broader DAO history of malicious proposals, vote-power accumulation and insufficient execution delays. Treasury systems need voting, but they also need enough time and authority separation for reviewers to stop a proposal that passes for the wrong reason.
Daily Crypto Briefs recently covered Solana’s tokenized-equities lead, where the network’s fast settlement was a strength for asset distribution. BonkDAO shows the other side of fast execution: governance safety has to keep pace with the chain’s ability to move value.
The DAO has not yet disclosed whether a timelock, multisig approval, proposal review process or emergency pause could have stopped the transfer. Those details will determine whether the incident was mainly a one-off voting failure or a structural treasury-design problem.
BONK Holders Watch Exchange Freezes
The most immediate recovery path runs through exchanges. If the stolen BONK reached identifiable exchange deposit paths, freezes can matter more than public outrage because liquid meme coins can be converted or routed quickly.
BonkDAO said it is working with exchanges, bridges, the Solana Foundation and law enforcement. That list suggests the investigation is tracking both centralized exchange touchpoints and possible cross-chain movement, but no participating exchange had announced a public recovery total when this article was prepared.
The security backdrop is already severe. TRM Labs said crypto attackers carried out a record 207 hacks in the first half of 2026, with operational and infrastructure compromises causing most stolen value. BonkDAO adds a governance example to the same risk map.
DefiLlama’s hacks database tracks billions of dollars in historical DeFi and crypto exploit losses, but governance incidents can be harder for users to parse because the transaction path may be authorized by the system’s own rules. That makes the postmortem especially important.
Market sentiment remains weak enough that security headlines can travel quickly.
Fear & Greed Index
July 6, 2026The next checks are narrow and verifiable: whether exchanges freeze any wallets, whether BonkDAO publishes the proposal ID and transaction trail, whether any funds are recovered, and whether Realms governance settings are changed for future treasury movement. Until those details arrive, the confirmed story is a $20 million treasury drain attributed by BonkDAO to a malicious governance proposal, not a finished accounting of every wallet and vote behind it.
Stay up to date
Get the latest crypto insights delivered to your inbox
Primary sources and further reading
| Source | Title |
|---|---|
| | BONK official X statement |
| | Crypto Briefing: BonkDAO treasury drained by malicious proposal |
| | BeInCrypto: BONK DAO loses $20M in governance attack |
| | Realms: Bonk DAO governance page |
| | CoinGecko: BONK price data |
| | TRM Labs H1 2026 crypto hack report |
| | Alternative.me: Crypto Fear and Greed Index |
Fact-checked by: Daily Crypto Briefs Fact-Check Desk
Related Articles
Frequently Asked Questions
What happened to BonkDAO?
BonkDAO said a malicious governance proposal drained an estimated $20 million worth of BONK tokens from the DAO treasury on July 6, 2026.
Was the BonkDAO incident a smart-contract exploit?
Current reporting points to a governance attack, not a conventional smart-contract exploit. The attacker appears to have used token voting power to pass a treasury-draining proposal.
How did the attacker get voting power?
BonkDAO said it identified exchange wallets used to purchase BONK before the proposal. BeInCrypto reported that preliminary analysis suggested roughly $4 million worth of BONK was used to secure votes.
What is BonkDAO doing after the treasury drain?
BonkDAO said it is working with exchanges, bridges, the Solana Foundation and law enforcement to recover funds and identify those responsible.
What should BONK holders watch next?
The next checks are exchange freezes, any recovered funds, a full BonkDAO postmortem, governance rule changes and whether BONK liquidity absorbs the stolen-token movement.



