BONKfun Restores Service: Website Suffered Social Engineering Attack, User Losses Will Receive 110% Compensation

Odaily Planet Daily reports that BONKfun team announced on the X platform that their official website was maliciously targeted in an social engineering attack on March 11. The attacker hijacked the BONKfun domain through the domain service provider and redirected it to an external registrar. The team confirmed that this incident was not caused by a breach of BONK or BONKfun’s internal systems, codebase, or team accounts.

After the incident, the team took immediate measures: shutting down the website, coordinating with the wallet service provider to flag the domain as malicious, and controlling the scope of user impact. The attack resulted in approximately $30,000 in customer losses. The team will compensate affected users at 110% to cover potential opportunity costs.

The BONKfun domain and registration were fully restored around 5 p.m. Eastern Time on March 18. Major wallet provider functions were restored by the evening of March 19, and the website is now securely online. Currently, some antivirus software still flags the main domain as risky, and the team is actively addressing this issue.

For users unable to access the official website due to antivirus software, a backup domain is also online, offering the same functionality as the main site.