Bonk.fun warned users not to use its site after attackers hijacked the domain and pushed a fake wallet-draining prompt.
The domain of Solana-based platform memecoin launchpad Bonk.fun has been hijacked after attackers gained access to a team account and deployed a wallet-draining scheme through the site.
The Bonk.fun account on X warned users early Thursday not to interact with the website while the team worked to secure the domain. “A malicious actor has compromised the BONKfun domain, do not interact with the website until we have secured everything,” the project wrote in a post on X.
X user Tom, who is an operator behind Bonk.fun, said the attackers used the compromised access to push a fake message designed to trick visitors into signing a malicious transaction.
