Most rug pulls leave their warning signs in plain sight. The problem is nobody teaches you what to look for until after you’ve already been burned.
A rug pull is when the developers of a crypto project abandon it and take investor funds with them. In 2023 alone, rug pulls and exit scams accounted for over $2 billion in losses across DeFi. In 2024 and 2025 the number stayed consistently high despite increased awareness.
The reason they keep working is not that investors are stupid. It is that the red flags are subtle when you are excited about potential returns. Here are nine things to check before putting money into any new project — every single one is publicly verifiable before you invest a dollar.
Red Flag 1: Anonymous Team With No Verifiable History
A pseudonymous founder is not automatically a scam — Bitcoin’s creator was anonymous. But there is a meaningful difference between a privacy-conscious developer and a team with zero verifiable history, no LinkedIn presence, no prior projects, and no public accountability.
The question to ask: if this project disappears tomorrow, is there anyone identifiable who could be held responsible?
Red Flag 2: Liquidity Is Not Locked
In DeFi projects the development team controls the liquidity pool unless they explicitly lock it using a service like Unicrypt or Team Finance. Unlocked liquidity means the team can drain the pool at any time — and walk away with everything deposited.
Always verify liquidity lock status before buying into any new token. This is publicly checkable on chain in under two minutes.
Red Flag 3: Contract Has a Mint Function or Ownership Not Renounced
If the smart contract has an active mint function the team can create unlimited new tokens at any time, diluting your position toward zero. If contract ownership has not been renounced or transferred to a burn address the team retains full admin control.
Both are checkable on Etherscan. If you cannot read a smart contract use Token Sniffer or Honeypot.is to scan it automatically.
Red Flag 4: No Audit or Audit From an Unknown Firm
A legitimate project pays for a smart contract audit from a reputable firm before launch. Certik, Hacken, and Trail of Bits are examples of credible auditors. Be skeptical of any project that claims to be audit pending post-launch, has an audit from a firm nobody has heard of, or links to an audit that does not match the deployed contract address.
Red Flag 5: Massive Wallet Concentration
Check the token holder distribution on Etherscan or BscScan. If the top ten wallets hold more than 40 to 50 percent of the supply a coordinated dump by those wallets can collapse the price in minutes. Pay attention to whether team wallets are still holding at launch — developers who immediately sell their allocation are a severe warning sign.
Red Flag 6: Copied Whitepaper or Plagiarized Code
Many rug pull projects copy whitepapers from legitimate projects with minor modifications. Run sections through a plagiarism checker. The smart contract code on Etherscan can also be compared — identical code to a known scam project is a hard stop.
Red Flag 7: FOMO Messaging and Artificial Urgency
Legitimate projects do not run countdown timers to force buying decisions. They do not tell you the price will 100x in 48 hours. They do not have Telegram admins DMing you personally to buy before it is too late. The more urgency a project creates artificially the more carefully you should slow down.
Red Flag 8: No Real Product or Roadmap Milestones
A token is not a product. Ask what the actual utility is, what has been built versus promised, and whether any roadmap milestones have actually been hit. Projects that are all vision with vague roadmaps full of ecosystem expansion language are selling a narrative not a product.
Red Flag 9: The Chart Looks Like a Perfect Launch Pump
A near-vertical price increase immediately after launch followed by a plateau is a classic pattern in coordinated pump and dump schemes. A healthy organic chart has volatility, pullbacks, and gradual accumulation. A manipulation chart looks almost too clean on the way up.
The Pre-Investment Checklist
Before buying any new token run through these questions: Is the team identifiable? Is liquidity locked? Has the contract been audited by a reputable firm? Is ownership renounced? Are tokens distributed broadly? Does the whitepaper appear original? Is there a real product with real milestones?
If more than two of these return red flags the risk is not worth taking regardless of how compelling the narrative sounds.
For the full breakdown with on-chain verification tools for each red flag visit GrowYourEthereum.com — free tools and straight-talk guides for serious ETH holders.
Full guide: https://growyourethereum.com/guides/how-to-spot-a-rug-pull
How to Spot a Rug Pull Before It Happens: 9 Red Flags Every Crypto Holder Should Know was originally published in Coinmonks on Medium, where people are continuing the conversation by highlighting and responding to this story.