Rug Pull Scams

A rug pull is a type of crypto exit scam in which a project team — typically the creators of a new token, decentralised finance (DeFi) protocol, or NFT collection — builds enough initial interest and investment to accumulate significant funds, then abruptly removes liquidity, abandons the project, and disappears with investors' money.

The term comes from the image of pulling a rug out from under someone. Investors believe they are participating in a legitimate project; the developers pull the underlying value away overnight, leaving token holders with assets worth nothing.

Rug pulls operate across a spectrum. At the extreme end, the project is fraudulent from the start — the team has no intention of building anything and is purely focused on maximising the amount of money they can extract before disappearing. At the other end, projects can begin with genuine intentions but pivot to an exit when development stalls or the founders see an opportunity. The harm to investors is similar in either case.

What makes rug pulls particularly damaging is the speed at which they can occur. A project may cultivate a community over weeks or months, building trust and social proof, before the exit happens within hours. By the time participants realise what has occurred, the funds are already moving through mixers or across chains, making recovery effectively impossible.

Rug pulls have occurred across every major blockchain ecosystem and are not limited to obscure projects. The combination of pseudonymous teams, unaudited code, and irreversible transactions creates a structural environment where exit fraud is straightforward to execute.

Most rug pulls follow a recognisable sequence. The team creates a new token or protocol, often building on existing open-source smart contract templates. They establish a social media presence — typically on Twitter/X, Telegram, and Discord — and begin promoting the project with enthusiastic messaging about utility, roadmaps, and community.

Early investors are recruited, sometimes with whitelist spots, presale allocations, or referral bonuses to incentivise participation. Artificial urgency is created: limited supply, a short presale window, or claims that influencers and institutional backers are already committed.

Once enough liquidity has been added to the trading pool — either by investors buying the token or by the team itself adding temporary liquidity to bootstrap price — the team exercises one of several exit mechanisms. In a liquidity pull, they remove the pairing asset (typically a major cryptocurrency) from the trading pool, leaving the token without anything to trade against; its price collapses to near zero instantly. In a mint exploit, the contract contains hidden code that lets the deployer mint unlimited tokens and dump them on the market. In an admin key exploit, the contract owner has privileged functions that allow draining funds directly.

After the exit, social accounts are deleted or abandoned, websites go offline, and the team disappears. Because blockchain transactions are irreversible, there is no mechanism to recover the funds.

Rug pulls succeed because they exploit the legitimate excitement around early-stage crypto projects. The promise of finding the next breakout token is real enough that many participants are willing to accept risks they would not accept elsewhere.

The pseudonymous nature of crypto teams makes accountability difficult. A team of developers communicating via Discord and known only by screen names can build substantial trust without ever verifying their identity. Social proof — a large Telegram group, positive Twitter posts, apparent influencer endorsements — substitutes for the due diligence that would otherwise apply.

Smart contracts are complex, and most retail investors cannot audit code. An unaudited contract may contain backdoors that are invisible to anyone not reading the code carefully. Even audits from lesser-known firms can be superficial or, in some cases, fraudulent themselves.

A new token launches with an active community, a detailed roadmap website, and an enthusiastic Telegram group. Early buyers see the price rise as more people join. The liquidity pool is substantial and growing. After several weeks of positive momentum, the deployer wallet executes a transaction removing almost all liquidity from the pool in a single block. The token price drops over ninety percent within seconds. The project's social accounts go silent. Investors attempting to sell find they can only recover a small fraction of their initial investment, and the funds extracted by the team cannot be traced to any identifiable party.

Presale closes in 24 hours — whitelist spots nearly full. [token] is the next [category] giant. Don't miss the launch.

Our smart contract has been fully audited. Liquidity is locked for 12 months. Join [fake link] before it's too late.

Early investors in our last project 100×'d. [token] presale live now — secure your allocation at [fake link].

We're doing a stealth launch to avoid bots. Only Telegram members get the contract address first.

Influencer [placeholder] just called [token] his biggest conviction bet of the year. Presale at [fake link].

Our dev wallet holds only 2% of supply — this is a fully community-owned project. Buy on [fake link].

Before investing in any new token or DeFi project, check whether the smart contract has been audited by a reputable, independent firm and whether the full audit report is publicly available. Be sceptical of claimed audits that cannot be verified on the auditor's own website.

Check whether liquidity is locked — a locked liquidity pool means the developers cannot remove the pairing asset for a set period. Liquidity lock records are typically verifiable on-chain. Unlocked liquidity is a significant red flag.

Investigate the team. Anonymous teams are common in crypto, but look for consistent long-term social presence, verifiable previous projects, and whether any members have public identities. Newly created social accounts with no history are concerning.

Search for the contract address on a blockchain explorer and look at the token holder distribution. If one or a small number of wallets hold a very high proportion of the supply, a coordinated sell-off can collapse the price regardless of other safeguards.

Check whether the contract has been renounced (ownership given up) or whether the deployer retains admin functions.