A rug pull is a scam where the people who built a crypto project suddenly pull all the liquidity, mint themselves a huge supply of tokens and dump, or otherwise extract all the value from a project that users had trusted with their money. The phrase comes from “pulling the rug out from under someone” β one day everything looks fine, the next day the liquidity pool is empty, the team’s social accounts are deleted, and the token is worth zero. It is the most common scam pattern in the memecoin and small-cap DeFi space, and it has been a running disaster for the last several cycles.
The mechanics vary but most rug pulls fit into a few categories. Liquidity rugs: the project creates a token, pairs it with ETH or stablecoins in a DEX pool, builds hype, and then withdraws the liquidity at a peak, leaving holders with a token they cannot sell because there is nothing on the other side of the pair. Mint rugs: the team retains the ability to mint unlimited new tokens and uses that power to inflate their own holdings, dump into the market, and destroy the token’s value. Contract rugs: the contract has a hidden function that lets the team drain user deposits or disable trading for everyone except themselves. Slow rugs: less dramatic, where the team just gradually sells their allocation while posting enthusiastic updates to retain the rest of the market, until the price eventually collapses under the weight of their selling.
The Red Flags
Rug pulls usually have warning signs that are visible if you know what to look for, though they are not always obvious to people who do not.
Anonymous teams. A pseudonymous team is not automatically a scam β Bitcoin was built by a pseudonymous team, and many legitimate projects operate under handles β but it removes one of the disincentives against exit-scamming. If the team members’ real identities are unknown and they have nothing public at stake, the cost of running with the money is lower than it would be if their real-life reputations were tied to the outcome.
Unlocked liquidity. If the liquidity for a token’s main trading pair is not locked in a time-locked contract, the team can pull it at any moment. Trustworthy projects lock their liquidity for a stated period (often 6-24 months) via services like Unicrypt or Team Finance, and the lock is verifiable on-chain. A project that will not lock liquidity, or that locks only a small fraction, is telling you something about their intentions.
Mint function or pause function. Looking at the token contract (or using a service that analyses it for you, like TokenSniffer or Honeypot.is) will often reveal whether the contract gives the deployer dangerous powers β minting new tokens, pausing trades, blacklisting specific addresses, or modifying transfer fees. A contract with no such powers is safer; a contract where the owner can freeze everyone’s transfers while selling their own is a trap.
Short timeline with massive hype. Projects that go from “new token deployed” to “ten thousand holders” in 48 hours without any meaningful product are almost always pump-and-dumps of one form or another. The hype is manufactured, the holders are mostly bots and copycats, and the endgame is a coordinated exit by whoever set it up. Slower-growing projects with actual usage over months or years are substantially less likely to be outright scams, though they can still fail for more mundane reasons.
The Famous Cases
Squid Game Token (November 2021) was the textbook example of a rug pull during the peak Netflix-tie-in speculation period. The token rode the show’s popularity to a peak price of around $2,800 before the creators disabled selling (due to a contract function that prevented any address other than theirs from transferring) and dumped their holdings, making off with roughly $3.4 million. The token immediately went to zero and the creators disappeared.
AnubisDAO (October 2021) raised around $60 million in ETH through a liquidity bootstrapping event and then a single address withdrew the entire raise within 24 hours of the launch. The team claimed it was a hack; no evidence emerged to support that, and the funds were never recovered.
Thodex (April 2021) was a Turkish centralised exchange whose founder allegedly fled the country with about $2 billion of user funds after the exchange suspended trading. This is technically an exchange exit-scam rather than a DeFi rug pull, but the pattern is the same β operators who had custody of user funds disappeared with them.
The cumulative damage from rug pulls is hard to estimate precisely but is certainly in the multi-billion dollar range over the last several years, mostly concentrated in the memecoin and small-cap token space. The pattern has not gone away and probably will not, because the incentive structure for creating a pump-and-dump token is still favourable: low cost to set up, potentially large upside if the hype takes off, minimal consequences if you exit cleanly.
The Sensible Defence
Avoid newly-launched tokens with anonymous teams, unlocked liquidity, and suspicious contract code. Assume the default outcome for any random new token is that it goes to zero, and only deviate from that assumption when there is specific evidence to justify a different view. Use tools like TokenSniffer, GoPlus, and Honeypot.is to scan contracts for known scam patterns before buying. Do not invest money you cannot afford to lose into anything you have not researched thoroughly. These rules sound obvious, and they are, and the reason rug pulls keep happening is that a large number of people do not follow them.