Bonk.fun Domain Hijacked to Push Crypto Wallet Drainer
Attackers hijacked the Bonk.fun domain to push a malicious prompt tricking users into draining their crypto wallets.Summary
The domain for Bonk.fun, a launchpad platform for the Solana-based memecoin Bonk, was hijacked after attackers gained access to a team account. The project warned users on X not to interact with the website while they secured it. An operator named Tom stated that the attackers used the compromised access to push a fake message, disguised as a terms-of-service prompt, designed to trick visitors into signing a malicious transaction that drained their wallets. Users who had previously connected wallets to Bonk.fun or were trading Bonk-related tokens via external terminals were reportedly safe. Some users reported losses, with claims ranging from 10 to 50 Solana (SOL), but the operator indicated the incident was contained quickly and losses appeared limited so far.
(Source:Cointelegraph)