{"id":23680,"date":"2026-03-12T06:35:34","date_gmt":"2026-03-12T06:35:34","guid":{"rendered":"https:\/\/bitunikey.com\/news\/bonk-fun-users-report-drained-wallets-after-hackers-hijack-platform-domain\/"},"modified":"2026-03-12T06:35:39","modified_gmt":"2026-03-12T06:35:39","slug":"bonk-fun-users-report-drained-wallets-after-hackers-hijack-platform-domain","status":"publish","type":"post","link":"https:\/\/bitunikey.com\/news\/bonk-fun-users-report-drained-wallets-after-hackers-hijack-platform-domain\/","title":{"rendered":"Bonk.fun users report drained wallets after hackers hijack platform domain"},"content":{"rendered":"<p><\/p>\n<div class=\"post-detail__content blocks\">\n<p class=\"is-style-lead\">The team behind the Solana-based memecoin launch platform Bonk.fun warned users to avoid its website after hackers reportedly compromised the domain and deployed a malicious wallet drainer, with at least one trader claiming losses of $273,000 after connecting their wallet.<\/p>\n<div id=\"cn-block-summary-block_b6ff7f23e38feb1a411407ad7df1100b\" class=\"cn-block-summary\">\n<div class=\"cn-block-summary__nav tabs\">\n        <span class=\"tabs__item is-selected\">Summary<\/span>\n    <\/div>\n<div class=\"cn-block-summary__content\">\n<ul class=\"wp-block-list\">\n<li>The Bonk.fun domain was reportedly compromised and used to deploy a malicious wallet drainer.<\/li>\n<li>The team says only users who signed a fake approval message after the breach were affected.<\/li>\n<li>Some users reported significant losses, including one trader claiming a $273,000 wallet drain.<\/li>\n<\/ul><\/div>\n<\/div>\n<p><!-- .cn-block-summary --><\/p>\n<h2 class=\"wp-block-heading\">Bonk.fun domain hack triggers wallet drainer<\/h2>\n<p>In a statement <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/bonkfun\/status\/2031927971611922517\" target=\"_blank\" rel=\"nofollow\">posted<\/a> on social media, the Bonk.fun account said a \u201cmalicious actor\u201d had taken control of the platform\u2019s domain and urged users not to interact with the website until the issue is resolved.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p>\n<p>\u201cA malicious actor has compromised the BONKfun domain, do not interact with the website until we have secured everything,\u201d the platform said.<\/p>\n<p>Tom, an operator associated with Bonk.fun, also warned that hackers had hijacked a team account and placed a crypto drainer directly on the site\u2019s domain. The attacker allegedly used the compromised domain to prompt users to sign a fraudulent approval message disguised as a terms-of-service request.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">To answer the  concerns I\u2019m seeing: <\/p>\n<p>1. No if you connected to bonk fun in the past you\u2019re not affected <\/p>\n<p>2. No if you trade bonk fun tokens on terminals etc you\u2019re not affected <\/p>\n<p>3. The only people affected were people who signed a fake TOS message on the bonkfun domain after\u2026<\/p>\n<p>\u2014 Tom (@SolportTom) <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/twitter.com\/SolportTom\/status\/2031940500203454521?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"nofollow\">March 12, 2026<\/a><\/p><\/blockquote>\n<\/div>\n<\/figure>\n<p>According to Tom, only users who signed the fake message after the compromise were affected.<\/p>\n<p>\u201cIf you connected to Bonk.fun in the past you\u2019re not affected,\u201d Tom wrote, adding that users trading Bonk.fun tokens through external trading terminals were also safe.<\/p>\n<p>He said the team quickly detected the incident and spread warnings across social media, which helped limit losses.<\/p>\n<p>Despite the response, some users <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/yazcapital\/status\/2031944600630263808\" target=\"_blank\" rel=\"nofollow\">reported<\/a> significant losses. One user claimed on X that they lost their entire wallet after connecting to the site.<\/p>\n<p>\u201cI just got drained for $273,000 on Bonk.fun,\u201d the user wrote, adding that their wallet was left \u201cbone dry\u201d after connecting.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">i just got drained for $273,000 on <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/twitter.com\/bonkfun?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"nofollow\">@bonkfun<\/a> <\/p>\n<p>i connected my same wallet i use daily to trade bonk tokens, once id connected all my assets were taken and my wallet was left bone dry.<\/p>\n<p>\u2014 dopamine (@dopamine273) <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/twitter.com\/dopamine273\/status\/2031930860732367184?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"nofollow\">March 12, 2026<\/a><\/p><\/blockquote>\n<\/div>\n<\/figure>\n<p>The team said it is working to secure the domain and investigate the incident, stressing that protecting users remains its top priority.<\/p>\n<p>The attack highlights a recurring security risk in the crypto sector, where compromised websites are often used to trick users into signing malicious transactions that grant attackers access to their funds.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p><\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The team behind the Solana-based memecoin launch platform Bonk.fun warned users to avoid its website after hackers reportedly compromised the domain and deployed a malicious wallet drainer, with at least&hellip;<\/p>\n","protected":false},"author":1,"featured_media":9547,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-23680","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cryptocurrency"],"_links":{"self":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23680","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/comments?post=23680"}],"version-history":[{"count":1,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23680\/revisions"}],"predecessor-version":[{"id":23681,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23680\/revisions\/23681"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media\/9547"}],"wp:attachment":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media?parent=23680"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/categories?post=23680"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/tags?post=23680"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}