Alpha FactoryALPHA FACTORYGet Full Access

Crypto Scam Report

The definitive guide to crypto scams — what they look like, how they work, and how to protect yourself.

$9.3 billion was lost to crypto scams in 2024, a 66% increase from the previous year. Understanding common scam patterns is your first line of defense.

The 6 Most Common Crypto Scam Types

Every major scam follows one of these playbooks. Learn the pattern and you can spot it before it costs you.

Rug Pull

A rug pull is one of the most common exit scams in the crypto space. Developers create a token, generate hype through social media and influencer promotions, and attract liquidity into a trading pool. Once the price has been pumped sufficiently, the team withdraws all liquidity — or exploits a hidden backdoor in the contract — causing the token price to collapse to near zero within minutes.

Rug pulls range from 'soft rugs' (team quietly abandons the project and stops communicating) to 'hard rugs' (immediate, malicious contract exploits that drain funds in a single transaction). Hard rugs are often enabled by hidden mint functions, ownership backdoors, or trading restrictions that only the team can bypass.

The defining feature of a rug pull is speed: by the time most investors realize what happened, the team has already converted stolen funds to ETH or BNB and moved them through a mixer. Anonymous teams make recovery practically impossible.

How to spot it

  • 1Team is anonymous with no verifiable online history
  • 2Smart contract has not been audited by a reputable firm
  • 3Tokenomics give insiders a large allocation with no vesting
  • 4Hype is driven entirely by social media with no product to show
  • 5Community channels ban or delete anyone asking critical questions

Real-world example

Squid Game Token (2021): Inspired by the Netflix series, SQUID launched in October 2021 and surged over 75,000% in days. The contract included anti-sell mechanics so only the developers could exit. On November 1, 2021, the team drained approximately $3.4 million in liquidity and disappeared, leaving the token worthless.

Related red flags:Anonymous or unverifiable teamNo token vesting scheduleRelies on celebrity/influencer hypeNo smart contract auditClosed-source or unverifiable codeCriticism is censored or attacked

Ponzi Scheme

Crypto Ponzi schemes follow the same logic as traditional financial fraud: promise high, consistent returns to attract capital, then use incoming investor funds to pay earlier participants. The illusion of profitability holds as long as new money keeps flowing in. When recruitment slows and withdrawals exceed deposits, the scheme collapses.

In crypto, Ponzi mechanics are often disguised as 'yield farming,' 'staking rewards,' or 'lending protocols.' The key question is always: where does the yield actually come from? Legitimate yield sources include protocol fees, loan interest, or liquidity provision rewards. Ponzi yield is circular — it is funded by the next person to deposit.

The collapse is always inevitable. Ponzi schemes in crypto have caused some of the largest investor losses in history, frequently targeting retail investors who are newer to the space and less equipped to evaluate yield claims critically.

How to spot it

  • 1Returns are guaranteed or described as 'risk-free'
  • 2The source of yield is vague, circular, or unexplained
  • 3Heavy recruitment incentives reward bringing in new investors
  • 4Withdrawal restrictions appear when too many users try to exit
  • 5The project cannot survive without constant new capital inflows

Real-world example

BitConnect (2016–2018): BitConnect promised returns of up to 40% per month through a proprietary 'volatility trading bot.' The platform raised an estimated $3.5 billion from retail investors worldwide. In January 2018, under pressure from cease-and-desist orders, BitConnect shut down its lending platform and the BCC token lost over 90% of its value within 24 hours.

Related red flags:Promises guaranteed returnsNo smart contract auditReturns paid from new investor moneyNo clear revenue modelCriticism is censored or attacked

Pump and Dump

Pump and dump schemes are among the oldest forms of market manipulation, transplanted from penny stocks into crypto with devastating efficiency. A coordinated group — sometimes organized in private Telegram or Discord channels — accumulates a low-liquidity token quietly, then simultaneously promotes it to a wider audience to drive the price up. Once retail buyers flood in and the price peaks, the organizers sell their entire position at the top.

In crypto, influencers and celebrities have been paid to promote tokens without disclosing compensation, accelerating pumps to massive audiences. The difference between organic hype and an orchestrated pump can be nearly impossible to detect in real time, which is precisely what makes it effective.

Retail investors who buy during the hype phase are left holding tokens that can lose 80–95% of their value within hours of the dump. Low-cap tokens with thin liquidity are the most vulnerable targets, as even small coordinated buys can produce dramatic price moves.

How to spot it

  • 1Price has surged dramatically in hours or days with no product news
  • 2Multiple influencers are promoting the token simultaneously
  • 3Token has very low liquidity and market cap, making pumps easy
  • 4The project has no working product, roadmap, or revenue model
  • 5Promotion focuses entirely on price potential, not technology

Real-world example

SaveTheKids Token (2021): A group of prominent YouTube and streaming influencers promoted KIDS token to their combined audiences of millions, claiming it was a charity project. Shortly after launch, the token price collapsed as early holders sold. Multiple influencers faced backlash and legal scrutiny for failing to disclose paid promotion agreements.

Related red flags:Anonymous or unverifiable teamPromises guaranteed returnsRelies on celebrity/influencer hypeNo clear revenue modelCriticism is censored or attacked

Fake ICO/IDO

Fake ICOs (Initial Coin Offerings) and IDOs (Initial DEX Offerings) involve creating the appearance of a legitimate fundraise — complete with a whitepaper, website, advisory board, and roadmap — while having no intention of building the promised product. Funds are collected from investors during a token sale, then the team disappears or delivers nothing of substance.

The sophistication of these scams varies widely. Some are crude, disappearing within days of the raise. Others maintain the pretense of development for months or years, releasing periodic but meaningless updates while slowly draining funds. Celebrity associations — even fabricated ones — have been used to lend false credibility to fraudulent offerings.

The regulatory environment for ICOs has tightened significantly since 2017–2018, but fake fundraises continue to evolve in form, including through presales, private rounds, and NFT-based fundraising structures that obscure the underlying mechanics.

How to spot it

  • 1Claimed partnerships cannot be verified through official channels
  • 2Whitepaper is plagiarized, vague, or technically incoherent
  • 3Team biographies link to unverifiable credentials or fake LinkedIn profiles
  • 4There is urgency around the token sale with artificial scarcity messaging
  • 5No code, prototype, or working product exists prior to the raise

Real-world example

Centra Tech (2017–2018): Centra Tech raised $32 million in an ICO by falsely claiming partnerships with Visa and Mastercard, and using fabricated executive biographies. Floyd Mayweather and DJ Khaled promoted the project without disclosing payment. All three founders were convicted of fraud; Mayweather and Khaled settled SEC charges.

Related red flags:Anonymous or unverifiable teamTeam has no prior crypto/tech experiencePromises guaranteed returnsRelies on celebrity/influencer hypeNo smart contract auditNo clear revenue model

Phishing / Social Engineering

Phishing and social engineering attacks in crypto target the weakest link in any security system: the human. Unlike smart contract exploits, these attacks don't require technical sophistication — they require only that a victim clicks a malicious link, connects their wallet to a fake site, or hands over a seed phrase after being manipulated into trusting the attacker.

Common vectors include fake airdrop announcements mimicking legitimate protocols, malicious wallet approval transactions disguised as routine interactions, impersonation of support staff in Discord or Telegram, and cloned websites with slightly altered URLs. 'Wallet drainer' kits have lowered the technical barrier for attackers to near zero, enabling mass phishing campaigns with minimal expertise.

No legitimate project, support team, or airdrop will ever ask for a seed phrase or private key. Wallet approvals should always be inspected carefully — a single approval of an unlimited token allowance to a malicious contract can empty an entire wallet.

How to spot it

  • 1The URL does not exactly match the official project domain
  • 2An airdrop or reward requires you to connect your wallet and sign a transaction
  • 3Someone in DMs is offering help and asking for your seed phrase or private key
  • 4The offer appeared suddenly and creates urgency to act before a deadline
  • 5The communication came through unofficial channels, not verified project accounts

Real-world example

Fake Uniswap Airdrop Campaigns (ongoing): Attackers have repeatedly launched phishing campaigns impersonating Uniswap, directing users to cloned websites that request wallet connections. Victims who interact with the malicious site grant token approval to drainer contracts, resulting in immediate loss of all approved assets. These campaigns have collectively drained millions from retail wallets.

Related red flags:Relies on celebrity/influencer hypeCriticism is censored or attacked

Pig Butchering

Pig butchering (sha zhu pan) is a long-form social engineering scam that originated in Southeast Asia and has expanded globally at alarming scale. The name refers to the practice of 'fattening the pig before slaughter' — attackers invest weeks or months building a genuine-feeling relationship with a victim before introducing a fraudulent investment opportunity.

The scam typically begins with an unsolicited contact via WhatsApp, Instagram, LinkedIn, or dating apps. The attacker builds trust through daily conversation, often posing as a successful investor or business professional. When the moment is right, they introduce a 'can't miss' crypto investment platform — one that shows fake profits and allows small initial withdrawals to build confidence. Victims are encouraged to deposit increasingly large sums. When they try to withdraw, they are told to pay taxes, fees, or verification deposits that never end.

These operations are frequently run by criminal organizations using trafficked workers in compounds across Myanmar, Cambodia, and the Philippines. The FBI's 2023 Internet Crime Report identified pig butchering as the largest and fastest-growing category of crypto fraud, accounting for billions in annual losses.

How to spot it

  • 1Unsolicited contact from a stranger who quickly builds an unusually close relationship
  • 2The person introduces a crypto investment platform you've never heard of
  • 3The platform shows consistently high returns with no visible risk or volatility
  • 4Small early withdrawals succeed, encouraging larger deposits
  • 5Withdrawal of larger amounts triggers demands for additional fees or taxes

Real-world example

2023 Global Pig Butchering Losses: The FBI's Internet Crime Complaint Center (IC3) reported over $3.5 billion in losses attributed to pig butchering and related investment fraud in 2023 alone, making it the single largest category of crypto-related financial crime. Individual victims frequently lose life savings, retirement funds, and borrowed money before recognizing the scam.

Related red flags:Promises guaranteed returnsNo smart contract auditClosed-source or unverifiable codeReturns paid from new investor moneyNo clear revenue model

When Red Flags Were Ignored: Real Cases

These are real projects that followed the patterns above. Every one of them showed multiple red flags that investors missed.

OneCoin2019

$4.4 billion lost

Ponzi Scheme

OneCoin was marketed as a Bitcoin rival through a global multi-level marketing network between 2014 and 2019, raising an estimated $4.4 billion from investors in over 175 countries. OneCoin had no public blockchain — internal ledgers were manipulated by the team, and the 'coin' was never tradeable on any legitimate exchange. Founder Ruja Ignatova, known as the 'Cryptoqueen,' disappeared in 2017 and remains a fugitive; her brother Konstantin Ignatov pleaded guilty to fraud charges in the United States.

Red flags present:Anonymous or unverifiable teamPromises guaranteed returnsNo smart contract auditClosed-source or unverifiable codeReturns paid from new investor moneyNo clear revenue modelCriticism is censored or attacked

BitConnect2018

$3.5 billion lost

Ponzi Scheme

BitConnect operated a lending platform from 2016 to 2018 that promised investors up to 40% monthly returns through an allegedly proprietary trading bot. The platform raised an estimated $3.5 billion from retail investors globally before shutting down in January 2018 following cease-and-desist letters from US state regulators. The BCC token lost over 90% of its value within 24 hours of the announcement; the platform's founder Satish Kumbhani was indicted by the US Department of Justice in 2022 on fraud charges.

Red flags present:Promises guaranteed returnsRelies on celebrity/influencer hypeNo smart contract auditReturns paid from new investor moneyNo clear revenue modelCriticism is censored or attacked

Squid Game Token2021

$3.4 million lost

Rug Pull

Capitalizing on the global popularity of the Netflix series, the SQUID token launched in late October 2021 and surged over 75,000% in days through viral social media attention. The contract included an anti-sell mechanism that prevented most holders from selling their tokens — a feature that received little scrutiny during the hype cycle. On November 1, 2021, the anonymous developers drained approximately $3.4 million in liquidity from the trading pool and shut down all communication channels, leaving the token effectively worthless.

Red flags present:Anonymous or unverifiable teamNo token vesting scheduleRelies on celebrity/influencer hypeNo smart contract auditClosed-source or unverifiable codeCriticism is censored or attacked

FTX / Alameda ResearchPremium2022

$8 billion+ lost

Fraud

FTX was one of the world's largest cryptocurrency exchanges before its collapse in November 2022, which revealed that founder Sam Bankman-Fried had directed billions in customer deposits to Alameda Research, his affiliated trading firm, without customer knowledge or consent.

Unlock all case studies with Alpha Factory Premium

Upgrade

Terra / LUNAPremium2022

$40 billion lost

Algorithmic Failure

The Terra ecosystem collapsed in May 2022 when its algorithmic stablecoin UST lost its dollar peg, triggering a death spiral that destroyed approximately $40 billion in market value within days.

Unlock all case studies with Alpha Factory Premium

Upgrade

Celsius NetworkPremium2022

$4.7 billion lost

Ponzi like

Celsius Network marketed itself as a crypto lending platform offering high yield on deposited assets, attracting approximately $4.7 billion from retail customers.

Unlock all case studies with Alpha Factory Premium

Upgrade

SafeMoonPremium2023

~$200 million lost

Fraud Allegations

SafeMoon launched in 2021 with viral tokenomics that imposed a 10% tax on all sells, marketed as a mechanism to reward holders and fund liquidity.

Unlock all case studies with Alpha Factory Premium

Upgrade

BitClub NetworkPremium2019

$722 million lost

Ponzi Scheme

BitClub Network operated from 2014 to 2019, claiming to give investors shares in a Bitcoin mining pool in exchange for buy-in fees ranging from $99 to $3,499.

Unlock all case studies with Alpha Factory Premium

Upgrade

Protect Yourself — The 12 Red Flags

These are the warning signs our Scam Check tool evaluates every project against.

  1. 1.

    Anonymous or unverifiable team

    Can't find real names, LinkedIn profiles, or prior track record. Legitimate projects are built by people willing to stand behind their work publicly.

  2. 2.

    Team has no prior crypto/tech experience

    Founders have no verifiable history in blockchain or software. A team launching a complex financial protocol should have relevant, checkable credentials.

  3. 3.

    Insiders hold >30% of supply

    Team, advisors, or early investors control a disproportionate share of tokens. Heavy insider ownership creates structural pressure to sell into the public market.

  4. 4.

    No token vesting schedule

    Insiders can dump tokens immediately after launch with no lockup period. A vesting schedule aligns team incentives with long-term project success.

  5. 5.

    Unlimited or inflationary token supply

    No max supply cap, with continuous minting possible by the team or protocol. Uncapped supply can dilute holders indefinitely without accountability.

  6. 6.

    Promises guaranteed returns

    Any claim of guaranteed profit is a red flag without exception. No legitimate investment can guarantee returns — if it sounds too good to be true, it is.

  7. 7.

    Relies on celebrity/influencer hype

    Marketing is personality-driven rather than product-driven. Celebrity endorsements are frequently paid promotions with no due diligence behind them.

  8. 8.

    No smart contract audit

    Code hasn't been reviewed by a reputable security firm such as CertiK, Trail of Bits, or OpenZeppelin. Unaudited contracts can contain intentional or accidental vulnerabilities.

  9. 9.

    Closed-source or unverifiable code

    Smart contracts are not published or verified on-chain, making it impossible to inspect what the code actually does. Transparency is table stakes for trustworthy DeFi.

  10. 10.

    Returns paid from new investor money

    Yield comes from new deposits rather than real revenue or protocol fees. This is the defining characteristic of a Ponzi scheme and is mathematically unsustainable.

  11. 11.

    No clear revenue model

    The team cannot explain how the protocol sustainably generates income. Without a real revenue model, token value depends entirely on continued speculation.

  12. 12.

    Criticism is censored or attacked

    The team deletes negative comments, bans critics, or threatens legal action against questioners. Healthy projects welcome scrutiny; scams suppress it.

Check a project now against all 12 red flags

Ready to check a project?

Use the free Scam Check tool to evaluate any project against all 12 red flags and get an instant risk score.

Check a ProjectTry Alpha Factory Free

Frequently Asked Questions

What percentage of crypto projects are scams?
Studies suggest between 20-40% of new crypto projects exhibit scam characteristics. In DeFi and meme coin sectors, the rate is even higher — some analyses put it above 50% for tokens launched on permissionless DEXs. The key is learning to spot patterns before you invest.
How can I verify if a crypto project is legitimate?
Start by checking: (1) Is the team publicly identifiable with verifiable credentials? (2) Is the code audited by a reputable firm? (3) Is the liquidity locked for a meaningful duration? (4) Does the whitepaper contain original content or is it copied? (5) Are token allocations reasonable with a vesting schedule? Use our free Scam Check tool at thealphafactory.io/scam-check for a structured evaluation.
What should I do if I've been scammed?
Immediately: (1) Stop sending any more funds — scammers often contact victims again posing as recovery services. (2) Document everything — wallet addresses, transaction hashes, communications. (3) Report to your country's financial regulator (FCA in UK, SEC/FTC in US, AFM in Netherlands). (4) Report to the exchange or platform used. (5) File a report with your local police. Recovery is rare but documentation helps investigations.

Explore More

Crypto GlossaryEvery term explained simplyCoin AnalysisDCA strategies for 30+ coinsTrack RecordEvery move, fully transparentDCA Strategy GuideBuild a disciplined buying plan