Rug Pulls & Exit Scams
Developers deploy a token, generate hype through paid influencers and Telegram/X campaigns, attract liquidity, then drain the pool or dump their pre-mined supply. Chainalysis flagged rug pulls and exit scams as a significant share of crypto fraud volume in its 2024 Crypto Crime Report, with most activity concentrated on Ethereum, BNB Chain, and Solana memecoin launches.
Token launch with aggressive marketing
A new token launches on a DEX such as Uniswap, PancakeSwap, or Raydium. The team buys influencer shoutouts, runs Twitter/X spaces, and seeds Telegram groups. Anonymous teams and unaudited contracts are common.
Engineered FOMO and price pump
Early buyers — often insiders using multiple wallets — push the price up sharply within hours or days. Screenshots of '100x gains' circulate on social media to draw in retail buyers chasing momentum.
Hidden control of supply or liquidity
The team retains a large share of the token supply, controls the liquidity pool LP tokens, or embeds malicious functions (mint, blacklist, modifiable fees) in the contract. Honeypot contracts let people buy but block selling.
Liquidity removal or insider dump
Once enough capital has flowed in, developers withdraw the paired ETH/BNB/SOL from the liquidity pool or sell their token allocation through fresh wallets. On-chain, this appears as a single large 'remove liquidity' transaction.
Price collapses, team disappears
The token chart collapses to near zero within minutes. Social channels are deleted or go silent. Funds are typically routed through Tornado Cash alternatives, cross-chain bridges, or mixer-like services, making recovery rare.
Anonymous team with no verifiable history · Locked liquidity claims that can't be verified on-chain · No smart contract audit from a reputable firm · Unrealistic promises ('100x guaranteed', 'next Bitcoin') · Token contract has a sell tax >5% or a hidden mint function
Rug Pull Protection Checklist
Use tools like Token Sniffer, GoPlus, or RugDoc to scan contracts
Verify liquidity lock on DeFi Llama or the blockchain explorer
Check holder distribution — if top 10 wallets hold >50%, it's risky
Never invest more than you can afford to lose in new tokens
Phishing & Fake Websites
Attackers replicate exchange or wallet UIs, buy Google/X search ads on official-sounding keywords, and craft transactions that look harmless but grant token approvals or sign off-chain Permit2 messages that drain wallets later. Scam Sniffer's 2024 phishing report attributed roughly $500M+ in losses to wallet-drainer phishing, with signature-based theft (eth_signTypedData) overtaking direct seed phrase theft.
Initial contact via ad, email, or DM
A sponsored Google or X result, a lookalike email from 'support@binnance.com', or a Discord DM from a fake admin directs you to act urgently — verify your wallet, claim an airdrop, or resolve a withdrawal issue. AI-generated voice and video impersonations of exchange support staff appeared in 2024–2025 cases.
Lookalike domain with a homoglyph or typo
The link resolves to a domain like 'bìnance.com', 'metarnask.io', or 'app-uniswap.org'. The page is a pixel-perfect clone, often served behind Cloudflare with a valid TLS certificate, so the padlock icon is meaningless.
Credential entry or wallet connection
You either type a password and 2FA code (which the site relays to the real exchange in real time, defeating SMS and TOTP) or connect a Web3 wallet and sign a transaction. The signature is often a Permit, Permit2, or setApprovalForAll — not a transfer — so no funds appear to move at signing time.
Address poisoning follow-up (optional)
Even without a successful sign, attackers may send a 0-value transaction from a vanity address whose first and last characters match one you recently sent to. Wallets that auto-fill from history can paste the attacker's address on your next withdrawal.
Drain executes
Approvals are exercised minutes to weeks later, often batched with other victims. Funds are routed through cross-chain bridges and mixers within hours. By the time the victim notices, the trail is cold.
Urgent language: 'Your account will be suspended in 24 hours' · Slightly misspelled URLs (binancee.com, metamask-wallet.io) · Requests for your seed phrase — no legitimate service ever asks for this · Pop-ups asking you to 'verify' or 'sync' your wallet · Emails from non-official domains (support@binance-help.xyz)
Phishing Protection Checklist
Bookmark official exchange URLs and only use those bookmarks
Enable 2FA with an authenticator app (not SMS)
Never enter your seed phrase on any website — ever
Use a hardware wallet for significant holdings
Install browser extensions like PhishFort that flag known phishing domains
Fake Airdrops & Drainer Contracts
Attackers airdrop worthless or fake-branded tokens (often imitating real airdrops like LayerZero, Jupiter, or EigenLayer) to thousands of wallets. Interacting with the token on a malicious site triggers an approval or signature that gives a drainer contract permission to move your real assets. CertiK and Scam Sniffer both reported drainer-as-a-service kits (Inferno, Pink, Angel) responsible for hundreds of millions in 2023–2024 losses.
Unsolicited tokens or NFTs appear
Random ERC-20 tokens, NFTs, or 'voucher' tokens show up in your wallet. The token name often impersonates a real upcoming airdrop and includes a website URL embedded in the token symbol or NFT metadata.
The claim site demands a wallet connection
Visiting the URL leads to a clone of a legitimate airdrop page. Pressing 'Claim' or 'Sell' opens a wallet prompt for an approval, a Permit2 signature, or a 'security check' message.
A signature grants drainer access
The signed payload is typically setApprovalForAll on an NFT collection, an ERC-20 approve with type(uint256).max allowance, or a Permit2 signature covering multiple tokens. No assets move at this step, so the wallet appears unaffected.
Drainer sweeps assets, often later
Within minutes to days, the drainer contract pulls every approved token and NFT in a single transaction, prioritizing the highest-value holdings. Funds are split across fresh wallets and bridged out.
Tokens appearing in your wallet that you didn't buy · Airdrop claims requiring wallet connection · Websites with no verifiable connection to the official project · 'Claim now or lose' urgency messaging · Approval requests for unlimited token access
Airdrop Scam Protection Checklist
Never interact with unknown tokens that appear in your wallet
Use Revoke.cash to regularly audit and revoke token approvals
Verify airdrops through official project channels only
Use a separate burner wallet for exploring new protocols
Read the transaction details carefully before approving anything
Ponzi & High-Yield Schemes
A platform promises fixed returns of 1–10% per day, sometimes framed as 'AI trading bots', 'arbitrage', or 'staking'. Returns are paid from new deposits rather than real yield. Recent examples include HyperVerse (~$1.3B loss, FBI charges 2024), JPEX (Hong Kong, ~HK$1.6B losses, charges filed 2023), and a long tail of Telegram-based 'crypto signal' funds.
Guaranteed-return marketing
Advertising emphasizes 'guaranteed', 'risk-free', or 'principal protected' daily returns. Real trading strategies, by contrast, never promise fixed daily yield — Treasury bills, the only true risk-free benchmark, paid roughly 4–5% per year through 2024–2025.
Early withdrawals are honored
Initial investors receive the promised payouts on time, funded entirely by new deposits. These early winners post screenshots and become unwitting marketers, often recruited through multi-level affiliate commissions.
Viral growth phase
Testimonials, branded conferences, and celebrity endorsements (sometimes paid, sometimes deepfaked) bring in exponentially more capital. The scheme may launch a token that 'pays dividends', adding a second layer of inflows.
Inflows slow, withdrawals stall
When new deposits no longer cover scheduled payouts, the operator imposes withdrawal limits, 'maintenance' freezes, or new KYC requirements. Affiliated 'support' staff blame technical issues or regulators.
Collapse and disappearance
Operators close the platform, sometimes claiming a hack. Funds are moved to mixers and offshore exchanges. Civil and criminal recovery typically returns cents on the dollar after years; many cases never produce any restitution.
Guaranteed returns — no legitimate investment can guarantee profits · Unrealistic daily/weekly returns (>1% per day) · Vague or non-existent explanation of how yield is generated · Referral-heavy / multi-level marketing structure · No verifiable on-chain trading activity · Withdrawal restrictions or minimum holding periods
Ponzi Scheme Protection Checklist
If returns sound too good to be true, they are — walk away
Ask: where does the yield actually come from? Demand a verifiable answer
Check if the platform is registered with a financial regulator
Verify on-chain activity matches claimed trading volumes
Start with a small test withdrawal before depositing significant funds
Impersonation & Romance Scams
Operators (often coerced workers in trafficking compounds in Southeast Asia) pose as romantic interests, business contacts, or successful traders on dating apps, LinkedIn, and WhatsApp. They build trust over weeks, then steer the victim to a fake trading platform — a pattern known as 'pig butchering'. The FBI's 2023 IC3 report attributed over $4.5 billion in U.S. losses to crypto-investment fraud, the largest fraud category, and 2024 figures rose further.
Wrong-number or social-app contact
An attractive, successful-sounding stranger messages you on Tinder, Hinge, Instagram, LinkedIn, or via 'wrong number' WhatsApp/SMS. Profile photos are AI-generated or stolen; in 2024–2025, deepfake video calls became common to defeat 'show me your face' verification.
Long-arc relationship building
Conversation moves off the original platform within days. Over 2–8 weeks, the contact shares life details, sends voice notes, and avoids meeting in person — citing travel, military deployment, or visa issues.
Introduction to a 'private' opportunity
The contact mentions an uncle/mentor's trading platform, 'IBM quantitative arbitrage', or an exclusive crypto exchange. Sometimes a fake account dashboard is shared first, showing fabricated profits.
Funded deposit on a fake platform
You're walked through buying crypto on a real exchange (Coinbase, Binance) and transferring to the scam platform's deposit address. The fake site shows your balance growing rapidly.
Test withdrawal succeeds
A small early withdrawal goes through, reinforcing trust. The contact urges you to deposit more and may pressure you to take loans, refinance property, or borrow from family.
Withdrawals blocked behind fake fees
When you try to withdraw a meaningful amount, the platform demands a 'tax', 'audit fee', or 'unlock deposit' — each new fee never frees the funds. Eventually the contact disappears, the platform goes offline, and recovery 'specialists' (themselves scams) appear.
Unsolicited DMs about crypto investments from strangers · Celebrity giveaways requiring you to send crypto first · Romantic interests who quickly steer conversations toward crypto · Exchange 'support' contacting you via Telegram or Discord · Pressure to move communication off-platform · Requests to download unfamiliar trading apps
Impersonation Scam Protection Checklist
No celebrity will DM you unsolicited to share investment opportunities
Legitimate exchanges never contact users via Telegram or Discord DMs
Never send crypto to someone you haven't met in person and verified
Verify support channels through the official website only
Be extremely skeptical of online relationships that lead to crypto investment discussions
Scam Comparison at a Glance
| Scam Type | Top Defence |
|---|---|
| Rug Pull / Exit Scam | Contract audit + holder check |
| Phishing / Fake Site | Bookmark URLs + never share seed |
| Fake Airdrop / Drainer | Never approve unknown contracts |
| Ponzi / High-Yield | Ask where yield comes from |
| Impersonation / Romance | Never send crypto to strangers |
Frequently Asked Questions
How do I verify if a crypto project is legitimate? +
What should I do if I've been scammed? +
Are all new crypto tokens scams? +
Can hardware wallets protect me from all scams? +
How do I report a crypto scam in the EU? +
Mga Derivatives at Leveraged Products — Mahalagang Babala sa Risk
Ang mga derivatives ay kumplikadong financial instruments na may mataas na risk ng mabilis na pagkawala ng kapital. Ang leveraged trading (futures, perpetual contracts, margin trading, options) ay maaaring magresulta sa mga pagkalugi na lalampas sa iyong paunang investment. Karamihan sa mga retail investor account ay nawawalan ng pera kapag nag-trade ng derivatives.
Dapat mong pag-isipang mabuti kung naiintindihan mo kung paano gumagana ang mga derivatives at kung kaya mong tanggapin ang mataas na risk ng pagkawala ng iyong pera. Ang content na ito ay para sa educational purposes lamang at hindi ito bumubuo ng financial advice, investment advice, o rekomendasyon na mag-trade ng derivatives.
Sa European Union, ang mga crypto derivatives ay inuri bilang financial instruments sa ilalim ng MiFID II. Ang mga platform lamang na may angkop na MiFID II authorization ang maaaring mag-alok ng mga produktong ito sa mga residente ng EU. Ang pagtrato ng regulasyon ay nag-iiba-iba ayon sa hurisdiksyon — i-verify ang legal na katayuan ng derivatives trading sa iyong bansa bago sumali.
Continue Learning
Trade Safely on a Regulated Exchange
Binance offers industry-leading security features including 2FA, anti-phishing codes, withdrawal address whitelisting, and a SAFU fund. Start trading with confidence on a platform trusted by millions.
Ad · Ang mga presyo ng digital asset ay napapailalim sa mataas na market risk at volatility ng presyo. Huwag mag-invest maliban kung handa kang mawala ang lahat ng perang in-invest mo. Mga Tuntunin at pagsisiwalat ng risk
Ang page na ito ay naglalaman ng mga affiliate link. Maaari kaming kumita ng komisyon kung mag-sign up ka, nang walang karagdagang gastos sa iyo.