BonkDAO Reports $20M Stolen Via Malicious Governance Proposal

BonkDAO, the decentralized autonomous organization governing the Solana-based memecoin Bonk, reported on March 26, 2024, that approximately $20 million worth of its treasury funds were stolen. The loss occurred due to a malicious governance proposal that was executed, according to a statement released by the Bonk Foundation.
The developers stated that the attack involved a proposal that, once approved, allowed for the transfer of Bonk tokens from the treasury to an unauthorized wallet. This exploit highlights a significant vulnerability within the DAO's governance framework. The Bonk Foundation has informed law enforcement agencies about the incident and is actively collaborating with them to investigate the theft and pursue the recovery of the stolen assets. They are also working to identify the individuals responsible for the malicious proposal and execution.
In response to the incident, BonkDAO has initiated measures to secure its remaining treasury and is reviewing its governance protocols to prevent future attacks. The foundation has not yet disclosed the specific technical details of the exploit but has assured the community that efforts are underway to mitigate the damage and restore confidence in the project's security. The incident underscores the ongoing risks associated with decentralized governance models and the need for robust security audits and checks within DAOs.
Original source — read the full reporting at the publisher:
Read on CoinTelegraph