Bonk.fun hacked: Domain hijacked, crypto drainer planted
The operator, known as Tom, said only users who signed a fake terms-of-service message on the compromised site after the breach were affected.
By Omkar Godbole|Edited by Sam ReynoldsUpdated Mar 12, 2026, 4:37 a.m. Published Mar 12, 2026, 4:27 a.m.
Make us preferred on Google
What to know:
- Bonk.fun, a community-driven Solana token issuance platform backed by Raydium and the BONK, warned users to avoid its website after hackers hijacked a team account and installed a crypto drainer on the domain.
- The operator, known as Tom, said only users who signed a fake terms-of-service message on the compromised site after the breach were affected.
- Tom said the incident was detected quickly, with losses not yet disclosed.
The one thing that remains constant in the crypto market, irrespective of whether it's booming or not, is hacks. Thursday, hackers grabbed Bonk.fun's domain, the Raydium- and BONK-backed Solana token launchpad, and planted a wallet drainer there.
Operator Tom announced the hack to the community through his X account @SolportTom. "Do not use the http://bonk.fun domain until further notice, hackers have hijacked a team account forcing a drainer on the DOMAIN," he said. Bonk's official X handle confirmed the same.
The breach underscores persistent vulnerabilities in crypto frontends, even as institutional participation booms and ecosystems become bigger.
Phishing attacks like this one, which trick users into signing malicious prompts on hijacked domains, have plagued crypto. In 2025, these scams hit record highs, with fraudulent inflows nearing $17 billion amid a 1,400% surge in AI-powered impersonations and "pig butchering" schemes.
Damage from Bonk.fun hack supposedly stays minimal so far. Tom said that past connections to bonk.fun remain safe, as do trades executed through third-party terminals. Only those who signed a bogus terms-of-service message on the compromised site after the breach were hit and swift community alerts appear to have limited the damage.
"We're doing everything in our power to fix the situation," the operator said, prioritizing users who have trusted the platform for the past eight months. The operator did not disclose the exact amount of dollar losses, but emphasized that the incident was caught quickly.
More For You
The Protocol: Ethereum Foundation starts experimenting with ‘DVT-lite’ technology
By Margaux Nijkerk|Edited by Stephen Alpher13 hours ago
Also: Nvidia’s rare blog, Aave liquidations, and Pudgy Penguins new game.
What to know:
Welcome to The Protocol, CoinDesk's weekly wrap of the most important stories in cryptocurrency tech development. I’m Margaux Nijkerk, a reporter at CoinDesk.
In this issue:
- Vitalik Buterin pushes ‘DVT-Lite’ to make Ethereum validator setup easier
- Nvidia's Huang argues AI creates jobs, not destroys them, in rare official blog post
- DeFi lending platform Aave sees a rare $27 million in liquidations after a price glitch
- Pudgy Penguins launches its 'Club Penguin' moment, and the game doesn't feel like crypto at all
Bitcoin slips below $69,500 as tanker attacks send oil back above $100
4 minutes ago
SEC, CFTC end years of rivalry with deal that will mean combined crypto oversight
6 hours ago
Crypto platform Bullish climbs past Coinbase to become third-largest crypto exchange by spot volume
8 hours ago
Bitcoin holds $70,000, starting to show relative strength versus stocks, software sector, and gold
8 hours ago
Ripple's share buyback program values the firm at $50 billion
9 hours ago
Bloomberg strategist doubles down on $10,000 bitcoin call but peers say it would take a nuclear war to get there
12 hours agoTop StoriesStablecoins won't get any kind of deposit insurance under GENIUS rules, says FDIC chief
12 hours ago
Wells Fargo signals deeper push into crypto, filing trademark for WFUSD
13 hours ago
U.S. February CPI matches forecasts, reinforcing expectations for no near-term rate cuts
16 hours agoSenate Democrats push prediction market limits, including banning bets on war, death
21 hours ago
