Bonfida Team Statement

  • Bonfida explains the sequence of events that led to prohibiting a user’s staking ability and momentarily holding their domain names to gain contact with the user
  • Staking issues experienced due to Solana’s degraded performance
  • Using a bot, a single user claimed over 80K of undeserving rewards taking full advantage of those to be distributed to stakers
  • These actions had malicious intent : claiming more than 3400 times is considered a direct attack on Bonfida’s community
  • These actions could have affected all our users’ honest earnings if Bonfida had not stepped in
  • User then went on to restake and dump undeserved rewards
  • The same user additionally tried to leverage their stolen earnings to manipulate the DAO by attempting to mint a council token, allowing them to become a member of the DAO council
  • A council is an emergency-only authority which is there to act quickly in unfavourable circumstances. Manipulation of these broad executive powers could have dire consequences. This is also considered a direct attack on the DAO and users
  • To avoid further destructive behaviour an emergency measure was taken. A similar measure is also available to ENS
  • Staking and the Solana Name Services are closely related. The earnings of one feed into the other. As a result, Bonfida acted on both fronts by prohibiting the user from further staking and temporarily revoking their domains names in order to force them into reaching out
  • These actions are justified by the outright vulnerability caused by the user to the system

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store