BONKfun Resumes Operations: Website Hit by Social Engineering Attack, Users Who Lost $30,000 to Receive 110% Compensation

CryptoWorld reports that the BONKfun team announced on X platform that their official website was maliciously targeted on March 11. The attacker hijacked the BONKfun domain through the domain service provider and redirected it to an external registrar. The team confirmed that this incident was not caused by a breach of BONK or BONKfun’s internal systems, codebase, or team accounts. After the incident, the team took immediate action: shutting down the website, coordinating with wallet service providers to flag the domain as malicious, and assessing the scope of user impact. Thanks to quick warnings from @phantom, @solflare, @MetaMask, @_SEAL_Org, and other security partners. The attack resulted in approximately $30,000 in customer losses. The team will compensate affected users at 110% to cover potential opportunity costs. The BONKfun domain and registration were fully restored around 5 p.m. Eastern Time on March 18. Major wallet provider functions resumed on the evening of March 19, and the website is now securely online. Some antivirus software still flags the main domain as risky; the team is actively addressing this. For users unable to access the official site due to antivirus software, a backup domain is also online, with the same functionality as the main site.