Bonk.fun Issues Urgent Warning After Domain Hijacked in Wallet-Drainer Attack The team behind the popular meme coin platform Bonk.fun has issued an urgent security warning, telling users to immediately avoid the site after malicious actors hijacked its domain. The attackers used their control to push a fraudulent wallet connection prompt designed to drain users’ digital assets. The incident serves as a stark reminder of the persistent threats in the decentralized finance space, where domain hijacking remains a potent attack vector. Reports indicate that the attackers successfully compromised the domain’s registration, allowing them to redirect the Bonk.fun website to a server under their control. Visitors to the compromised site were then presented with a fake prompt that appeared to request a wallet connection or signature. In reality, this prompt was a malicious transaction that, if approved, would grant the attackers permission to withdraw a wide range of tokens from the victim’s connected cryptocurrency wallet. This type of attack is commonly known as a wallet-drainer or approval phishing scam. The Bonk.fun team moved quickly to communicate the breach across its official social media channels. Their message was unequivocal: users must not interact with the Bonk.fun website until further notice. They emphasized that any prompt seen on the site is malicious and should not be signed. The platform advised its community to rely solely on announcements from its verified social media accounts for updates and to treat any other sources with extreme caution. The team is actively working to regain control of the domain and resolve the security breach. This event highlights a critical vulnerability that many Web3 projects face. While smart contracts and blockchain protocols themselves can be highly secure, the traditional web infrastructure used to access them, like domain names and web hosts, presents a central point of failure. Attackers often target domain registrars or use social engineering to seize control of these assets. For users, the attack reinforces essential security practices. The most important rule is to never sign a transaction or wallet connection request from a website that is under a known security incident. Crypto users should always double-check the URL they are visiting for subtle misspellings or irregularities. Furthermore, it is crucial to use wallet features like transaction previews carefully. Verifying the permissions being granted and the recipient addresses in any transaction can often reveal malicious intent. Users are also advised to regularly review and revoke unnecessary token approvals through blockchain explorer tools dedicated to that purpose. As of the latest updates, the situation remains unresolved. The Bonk.fun team continues its efforts to reclaim the domain and restore safe access. The broader crypto community is watching closely, as the outcome will provide another case study in crisis response and security remediation within the fast-moving digital asset ecosystem. The takeaway for all participants is clear. Security is a shared responsibility. Project teams must employ robust domain security, including registry locks and multi-factor authentication. Meanwhile, users must maintain constant vigilance, understanding that the interface they see in their browser can be a trap, regardless of how legitimate a project may be. Until the all-clear is given officially, steering clear of the affected site is the only safe course of action.
