Skip to content
wlec logo
Back to Guides
BeginnerSecurity 13 min read

What Is a Rug Pull in Crypto? How to Spot and Avoid Them

Learn what crypto rug pulls are, how scammers execute them, warning signs to watch for, and practical tools to verify tokens before investing in 2026.

By WeLoveEverythingCrypto Team|
What Is a Rug Pull in Crypto? How to Spot and Avoid Them

What Is a Rug Pull in Crypto? How to Spot and Avoid Them

You've probably heard horror stories: someone invests in a promising new cryptocurrency, only to watch the developers vanish overnight with all the money. This devastating scam is called a "rug pull," and it's the most common crime in crypto.

In 2025, crypto scams reached a staggering $17 billion in losses, up from $9.9 billion in 2024. Rug pulls account for a significant portion of these losses, affecting hundreds of thousands of investors.

This guide will teach you what rug pulls are, how they work, how to spot warning signs, and which tools can help protect you.

TL;DR

Quick Summary: A rug pull is a crypto scam where developers create a token, hype it up to attract investors, then suddenly drain all the liquidity and disappear with the funds, leaving investors with worthless tokens they can't sell.

Key Takeaways:

  • Over 300,000 scam tokens were created in 2025, defrauding 2 million investors
  • Hard rug pulls involve suddenly draining liquidity; soft rug pulls are gradual exits
  • 90% of new-token rug pulls happen within the first two days after launch
  • Warning signs include anonymous teams, unlocked liquidity, and unrealistic promises
  • Tools like Token Sniffer, RugCheck, and De.Fi Scanner can help detect potential scams
  • Always verify smart contracts, liquidity locks, and team identities before investing
  • If something promises guaranteed high returns, it's almost certainly a scam

What Is a Rug Pull?

A rug pull is a type of exit scam where cryptocurrency developers abandon a project and run away with investors' funds. The term comes from the expression "pulling the rug out from under someone" because investors suddenly lose everything without warning.

Here's how a typical rug pull works:

  1. Creation: Scammers create a new token with appealing branding and promises
  2. Hype: They market it aggressively on social media, promising massive returns
  3. Liquidity provision: They create a liquidity pool so people can buy the token
  4. Investment phase: Unsuspecting investors buy the token, driving up the price
  5. The pull: Developers suddenly drain all the liquidity or sell their massive token holdings
  6. Collapse: The token price crashes to zero, and investors can't sell their tokens

The result: Investors are left holding worthless tokens while scammers disappear with the money.

Why Are Rug Pulls So Common?

Several factors make rug pulls prevalent in crypto:

Low barrier to entry: Creating a token is easy and cheap. Anyone can launch one in minutes using platforms like Uniswap or PancakeSwap, requiring minimal technical knowledge.

Decentralization: The permissionless nature of blockchain means no central authority approves tokens before launch, unlike traditional securities markets where regulators must review offerings.

Anonymity: Scammers can remain anonymous or use fake identities, making them difficult to track and prosecute.

FOMO (Fear of Missing Out): Investors desperate for the next 100x gain often skip due diligence, making them easy targets.

Global reach: Scammers can target victims worldwide from jurisdictions with lax enforcement.

Smart contract exploits: Malicious code hidden in smart contracts allows developers to manipulate tokens in ways investors don't understand.

Types of Rug Pulls

Not all rug pulls work the same way. Understanding the different types helps you identify them:

Hard Rug Pulls

A hard rug pull is when developers completely and suddenly disappear, taking all funds with them. This is the most dramatic and devastating type.

How they work:

  • Liquidity removal: Developers remove all liquidity from the trading pool, making it impossible to sell the token
  • Backdoor code: Hidden functions in the smart contract allow developers to drain funds
  • Token dumping: Developers sell massive amounts of tokens they reserved for themselves, crashing the price to zero

Example scenario: A new "DogeMoon" token launches with promises of "going to the moon." After a week of hype and rising prices, the developers suddenly remove all liquidity from the pool. Investors try to sell but can't find any buyers. The token becomes worthless overnight. The developers vanish with all the invested funds.

Legal status: Hard rug pulls are usually illegal, involving clear fraud and theft, but prosecution is difficult due to anonymity and jurisdictional challenges.

Soft Rug Pulls

A soft rug pull is a more gradual and subtle exit strategy where developers slowly reduce their involvement and dump tokens over time rather than pulling all liquidity at once.

How they work:

  • Gradual selling: Developers slowly sell their token holdings over weeks or months
  • Reduced communication: Updates become less frequent, promises go unfulfilled
  • Abandoned development: The project stops making progress while developers cash out
  • Marketing cessation: Promotion stops, community engagement drops off

Example scenario: A DeFi project launches with a roadmap and active Telegram community. Developers initially deliver some features but gradually become less responsive. Meanwhile, they slowly sell their tokens. After several months, they stop responding entirely. The project dies slowly rather than suddenly, but investors still lose most of their money.

Legal gray area: Soft rug pulls are harder to prosecute because developers can claim they simply lost interest or that the project failed legitimately. The gradual nature makes it difficult to prove intent to defraud.

Stealth Rug Pulls

The most sophisticated scams in 2026 are stealth rug pulls that are designed to avoid detection while still extracting value from investors.

Techniques used:

  • Hidden token minting: Contract allows creating new tokens diluting everyone's holdings
  • Staged sell pressure: Coordinated selling by insiders that looks like normal market activity
  • Unfiled tokens: Extra token supply not disclosed in documentation
  • Misleading metrics: Fake trading volume or holder counts
  • Honeypots: You can buy the token but hidden code prevents selling

Why they're dangerous: These are optimized for plausible deniability. Developers can claim market dynamics or project failures rather than intentional fraud, making them harder to identify before investing and harder to prosecute after.

Famous Rug Pull Examples

Learning from past scams helps you recognize patterns:

Squid Game Token (2021)

The scam: Capitalizing on the popular Netflix series, the Squid Game token promised a play-to-earn game. The token's price skyrocketed from $0.01 to over $2,800 within days.

The pull: Developers included hidden code that prevented investors from selling. They then dumped their holdings and disappeared, taking about $3.3 million. The token crashed to $0.0007 in seconds.

Lesson: If you can't sell a token (even in testing), it's a massive red flag. Also, celebrity or trending topic-themed tokens are favorite vehicles for scammers.

OneCoin (2014-2017)

The scam: OneCoin claimed to be a cryptocurrency and Bitcoin competitor but was actually a Ponzi scheme with no real blockchain. They raised an estimated $4 billion from investors worldwide through aggressive multi-level marketing.

The collapse: Founder Ruja Ignatova disappeared in 2017 and remains on the FBI's Ten Most Wanted list. Several associates were arrested and convicted.

Lesson: Just because something calls itself crypto doesn't mean it is. Verify that a project actually has a real, auditable blockchain.

Meerkat Finance (2021)

The scam: A DeFi protocol on Binance Smart Chain that promised high yields. Just one day after launching, $31 million in investor funds were drained.

The pull: Developers claimed they were "hacked," but analysis revealed they had included backdoor code allowing them to drain vaults. They tried to frame it as an external attack.

Lesson: "We were hacked" is a common excuse for rug pulls. Smart contract audits can reveal whether such exploits were intentional.

AnubisDAO (2021)

The scam: A dog-themed fork of Olympus DAO raised approximately $60 million in just 20 hours. The website and social media promised high returns.

The pull: Within 24 hours of the fundraise, all liquidity was drained by the developers, who then deleted the website and social media accounts.

Lesson: Rapid fundraising without established credibility is suspicious. The 20-hour timeline should have been a warning. Most legitimate projects don't raise tens of millions overnight.

Warning Signs of a Rug Pull

Learning to spot red flags can save you from becoming a victim:

Anonymous or Fake Team

Red flag: No real names, photos, or backgrounds for the development team

Why it matters: If developers are anonymous, they have no reputation to lose and can't be held accountable. Scammers often use stock photos or fake LinkedIn profiles.

What to check:

  • Search team members' names and photos (reverse image search)
  • Verify LinkedIn profiles are real and have history
  • Check if team members have track records in crypto
  • Be skeptical of teams with no digital footprint

Exception: Some legitimate privacy-focused projects have anonymous teams (like Bitcoin's Satoshi Nakamoto), but these are rare and usually have long track records.

Unlocked Liquidity

Red flag: Liquidity is not locked or is locked for a very short period (days or weeks)

Why it matters: If liquidity isn't locked, developers can remove it at any time, making your tokens worthless and unsellable.

What to check:

  • Verify whether liquidity tokens (LP tokens) are locked
  • Check the lock duration (should be months or years for legitimate projects)
  • Use tools like Unicrypt or Team Finance to verify locks
  • Minimum safe period: 6-12 months for new projects

Unrealistic Returns

Red flag: Promises of guaranteed high returns like "1000% APY" or "100x guaranteed"

Why it matters: Legitimate investments cannot guarantee returns, especially extreme ones. These promises exist solely to attract victims.

Common scam claims:

  • "Guaranteed" returns of any kind
  • "Can't lose" investments
  • Extremely high APY (Annual Percentage Yield) percentages
  • "Get in early before it moons"

Reality check: If returns seem too good to be true, they are. Real DeFi yields fluctuate based on market conditions and typically range from 3-20% APY for relatively safe options.

No Smart Contract Audit

Red flag: The project has not been audited by a reputable firm, or claims to be audited without providing proof

Why it matters: Audits review the smart contract code for vulnerabilities and malicious functions. Scammers avoid audits because auditors would expose the rug pull code.

What to check:

  • Look for audits from known firms (CertiK, Halborn, Trail of Bits, Quantstamp)
  • Verify the audit report is real (visit auditor's website directly)
  • Check what the audit found (even legitimate projects have issues)
  • Be skeptical of unknown or fake audit firms

Limitation: An audit doesn't guarantee safety (auditors sometimes miss issues or projects change code after audits), but the absence of an audit is a red flag for any DeFi project handling significant funds.

Irregular Token Distribution

Red flag: Developers or insiders hold a massive percentage of tokens, or distribution details are hidden

Why it matters: If a small group controls most tokens, they can dump them on the market, crashing the price.

What to check:

  • Look at the top token holders (should be distributed, not concentrated)
  • Check if team tokens are vested (released gradually) or unlocked (can be sold immediately)
  • Verify the token distribution matches whitepaper claims
  • Use blockchain explorers (Etherscan, BscScan) to see holder distribution

Warning thresholds:

  • Team holding >50% of supply: Very high risk
  • Team holding 25-50%: High risk unless properly vested
  • Team holding 10-25%: Moderate risk, check vesting
  • Team holding <10% with vesting: More reasonable

Suspicious Trading Patterns

Red flag: Huge price increases with low or suspicious trading volume, or you can buy but can't sell

Why it matters: Scammers often manipulate prices artificially or use honeypot contracts that allow buys but block sells.

What to check:

  • Verify trading volume is real (not wash trading)
  • Try a very small test transaction before larger purchases
  • Check if sells are actually happening (look at transaction history)
  • Use simulators to test if you could sell before buying

Aggressive Marketing

Red flag: Spam on social media, paid shills, pressure to buy immediately, celebrity endorsements

Why it matters: Legitimate projects rarely need aggressive marketing or pressure tactics. Scammers create urgency to prevent due diligence.

Common tactics:

  • Constant "THIS IS YOUR LAST CHANCE" messaging
  • Paid influencers with no disclosure
  • Bot armies spamming social media
  • Fake countdown timers creating urgency
  • Celebrity endorsements (many celebrities unknowingly promote scams or are paid to)

Poor or Missing Documentation

Red flag: No whitepaper, or a whitepaper that's vague, copied from other projects, or full of buzzwords without substance

Why it matters: Legitimate projects articulate their technology, tokenomics, and roadmap clearly. Scammers keep things vague to avoid scrutiny.

What to check:

  • Is there a whitepaper or technical documentation?
  • Does it explain HOW things work, not just what they promise?
  • Can you understand the token's utility and distribution?
  • Has the text been copied from other projects? (Google portions to check)

Tools to Detect Rug Pulls

Fortunately, several tools can help you verify tokens before investing:

Token Sniffer

Website: tokensniffer.com

What it does: Automatically scans smart contracts for common rug pull indicators and scam patterns

Features:

  • Scans contract code for malicious functions
  • Checks for honeypot code (allows buying but not selling)
  • Verifies if liquidity is locked
  • Provides a risk score
  • Works across multiple blockchains

How to use: Paste the token contract address into Token Sniffer and review the risk assessment and warnings.

RugCheck

What it does: Specifically designed to identify rug pull risks in new tokens

Features:

  • Checks for hidden mint functions
  • Identifies whether developers can pause trading
  • Verifies liquidity lock status
  • Analyzes holder distribution
  • Flags suspicious wallet patterns

Strength: Very user-friendly, presenting risks in plain language rather than technical jargon.

De.Fi Scanner

Website: de.fi

What it does: Comprehensive security analysis of tokens, smart contracts, and even NFTs across multiple blockchains

Features:

  • Deep analysis of various risk factors
  • Multi-chain capabilities
  • Portfolio tracking and monitoring
  • Detailed reports with explanations
  • Approval scanner (checks what access you've granted to protocols)

Strength: Most comprehensive tool, essentially "antivirus for crypto," though it can be complex for absolute beginners.

Blockchain Explorers

Examples: Etherscan (Ethereum), BscScan (Binance Smart Chain), PolygonScan (Polygon)

What they do: Allow you to view all on-chain data including transactions, holder distributions, and smart contract code

What to check:

  • Top holders (is supply concentrated?)
  • Transaction history (are sells being blocked?)
  • Contract code (is it verified? Look for risky functions)
  • Liquidity pool addresses (is liquidity locked?)

How to use: Search for the token contract address and explore the contract and holders tabs.

Manual Contract Review

What it involves: Reading the actual smart contract code to identify malicious functions

What to look for:

  • mint functions (can create unlimited new tokens)
  • blacklist or freeze functions (can prevent specific wallets from selling)
  • setTax or dynamic fee functions (can change transaction fees to 99%)
  • ownership centralization (single address controls everything)
  • pause functions (can stop all trading)

Limitation: Requires some technical knowledge to read Solidity (smart contract programming language). Not beginner-friendly but worth learning basics if you invest in new tokens.

Tools that help: Etherscan shows contract code with a green checkmark if the source code is verified (meaning you can read it).

How to Protect Yourself

Prevention is the best protection:

Do Your Research (DYOR)

Never skip due diligence:

  • Research the team thoroughly
  • Read the whitepaper and understand the project
  • Check social media for genuine community (not bots)
  • Look for legitimate partnerships and audits
  • Search for reviews and analyses from reputable sources

Minimum research time: Spend at least 2-3 hours researching before investing in any new project. If that seems like too much, the project isn't worth your money.

Start Small

Never invest more than you can afford to lose: This is doubly true for new tokens.

Test with small amounts:

  • Make a tiny purchase first
  • Verify you can actually sell it
  • Gradually increase position size if confident

Portfolio allocation: New, unproven tokens should be less than 5% of your crypto portfolio, and crypto itself should be only a portion of your overall investments.

Stick to Established Projects

The safest approach: Focus on established cryptocurrencies with proven track records.

Lower-risk options:

  • Bitcoin and Ethereum (most established)
  • Top 20 market cap cryptocurrencies (generally more vetted)
  • Projects with years of operation history
  • Tokens listed on major exchanges (Coinbase, Kraken, etc.)

Risk-return trade-off: Established projects are less likely to explode in value but also far less likely to be scams.

Avoid New Launches

The data is clear: 90% of new-token rug pulls happen within the first two days after launch.

Safer strategy:

  • Wait at least a week before considering any new token
  • Preferably wait months to see if the project delivers
  • Miss some gains but avoid most scams

Exception: If you have deep expertise in evaluating contracts and teams, early investment can be worth the risk, but never for beginners.

Use Decentralized Exchanges Carefully

The paradox: DEXs (Decentralized Exchanges like Uniswap) enable anyone to list tokens without approval, which empowers innovation but also enables scammers.

Safe DEX usage:

  • Only trade tokens you've thoroughly researched
  • Verify the correct contract address (scammers create fake tokens with similar names)
  • Check liquidity (low liquidity = higher risk)
  • Be extra cautious with tokens not listed on centralized exchanges

Enable Wallet Security

Best practices:

  • Use hardware wallets for significant holdings
  • Never share your seed phrase with anyone
  • Be skeptical of airdrops (often scams)
  • Revoke token approvals regularly (use De.Fi Scanner)
  • Use separate wallets for experimenting with new tokens vs. holding established assets

What to Do If You've Been Rug Pulled

If you've fallen victim to a rug pull:

Immediate Actions

  1. Stop further investment: Don't "average down" or believe promises of recovery
  2. Document everything: Screenshots, transaction hashes, websites, social media posts
  3. Report the scam: To local law enforcement and relevant agencies (FBI IC3 in the US, Action Fraud in UK, etc.)
  4. Warn others: Share details on crypto scam databases and communities
  5. Report to exchanges: If listed anywhere, report to the platform

Recovery Options (Usually Limited)

Realistic expectations: Unfortunately, recovery is rare in rug pulls. Blockchain transactions are irreversible and scammers are often anonymous.

Possible avenues:

  • Legal action: If developers are identified and in your jurisdiction, consult an attorney
  • Exchange freezes: If caught quickly, exchanges sometimes freeze scammer addresses
  • Community efforts: Some communities pool resources for legal action or investigations
  • Insurance: A few DeFi platforms offer insurance, though it rarely covers rug pulls

The hard truth: Most rug pull victims never recover their funds. This is why prevention is so critical.

Learn and Move Forward

  • Don't let embarrassment prevent you from reporting or learning
  • Many experienced investors have been scammed at some point
  • Use the experience to become more skeptical and thorough
  • Share your story to help others avoid the same mistake

The Future of Rug Pull Prevention

The crypto industry is working on solutions:

Improved tools: Detection algorithms are getting better at identifying scams before they succeed.

Regulatory pressure: As regulations develop, rug pulls are becoming legally riskier for scammers.

Decentralized verification: Projects like token curated registries aim to create community-vetted lists of legitimate projects.

Exchange gatekeeping: Major exchanges are implementing stricter listing requirements.

Education: Growing awareness means investors are doing more due diligence.

Identity verification: Some platforms are pushing for verified identities for developers, trading anonymity for accountability.

However: Scammers adapt quickly. As detection improves, scams become more sophisticated. Vigilance will always be necessary.

FAQ

Are all new tokens rug pulls?

No, but a large percentage are. Many legitimate projects launch tokens, but scams outnumber them significantly. Always assume a new token is a scam until proven otherwise through thorough research.

Can a token be a rug pull even if it's audited?

Yes, though less likely. Audits can miss issues, or developers can change code after auditing. An audit is a positive sign but not a guarantee.

Is it illegal to create a rug pull?

Yes, in most jurisdictions, rug pulls constitute fraud and theft. However, prosecution is difficult due to anonymity, jurisdiction issues, and the challenge of proving intent versus project failure.

What's the difference between a rug pull and a project just failing?

Intent and honesty. Legitimate projects can fail due to market conditions, technical challenges, or lack of adoption. Rug pulls involve intentional deception from the start. The difference isn't always clear, especially with soft rug pulls.

Can I make money from new tokens without getting rug pulled?

Possibly, but the risk is extremely high. If you choose to invest in new tokens, use the verification tools in this guide, invest only amounts you can afford to lose completely, and accept that even with due diligence, you might be scammed.

Are rug pulls only a problem with small tokens?

Mostly yes. Established cryptocurrencies like Bitcoin, Ethereum, and major altcoins are too large and decentralized to rug pull. The risk is concentrated in new, small-cap tokens, particularly on decentralized exchanges.

Do centralized exchanges list rug pull tokens?

Rarely. Major exchanges like Coinbase, Kraken, and Binance have listing requirements that filter out most scams. If a token is listed on a major centralized exchange, it's not a guarantee of legitimacy but significantly reduces rug pull risk.

Conclusion

Rug pulls are the most common and devastating scam in cryptocurrency, causing billions in losses and affecting millions of investors. The crypto crime wave peaked at $17 billion in losses in 2025, with rug pulls accounting for a substantial portion.

The good news: rug pulls are usually preventable if you know what to look for. By learning the warning signs, using verification tools, and practicing skeptical due diligence, you can dramatically reduce your risk.

Key principles to remember:

  • If it seems too good to be true, it is
  • Do thorough research before investing in any new token
  • Use verification tools like Token Sniffer, RugCheck, and De.Fi Scanner
  • Start small and verify you can sell before investing significant amounts
  • Prefer established projects over new, unknown tokens
  • Never invest more than you can afford to lose
  • Be especially cautious in the first days after a token launch

The allure of finding the next 100x cryptocurrency is strong, but the reality is that most new tokens are scams designed to exploit that exact desire. Protect yourself by being skeptical, doing your homework, and recognizing that in crypto, if you're being rushed to invest, you're likely being scammed.

Stay safe, stay skeptical, and remember: missing out on a potential gain is always better than definitely losing your investment to a rug pull.

Disclaimer: This article is for educational purposes only and does not constitute financial or investment advice. Cryptocurrency investments are highly risky, and you should never invest more than you can afford to lose. Always conduct thorough research before making any investment decisions.

What's Next?

Browse More Guides

Continue learning with our other guides

Compare Exchanges

Find the right platform to start trading

Disclaimer: This guide is for educational purposes only and should not be considered financial advice. Cryptocurrency investments carry significant risk. Always do your own research before making investment decisions.