The crypto world is full of promises for quick and easy profits. However, it's crucial to identify which projects are safe and which will likely fail within a few months. This guide presents eight practical methods to help traders and investors avoid falling victim to token scams.
Start with the Basics
When verifying a token's legitimacy, start with the most accessible methods. Use search engines like Google and social media platforms like X (formerly Twitter) to research the token and its team. Look for warning signs and rely on trustworthy sources such as official websites, news articles, and verified social media accounts.
Check for Social Media Red Flags
A verified X (Twitter) account can often indicate a project’s legitimacy. Engage in discussions about the token to gauge community sentiment and opinions.
Be cautious of projects with a large number of followers but low engagement. Automated comments from fake accounts are another red flag. If all comments are generic praises like "This is a great project" or "Moon soon," proceed with caution.
Search the Token Address on Google
If an internet search doesn’t yield a clear homepage, whitepaper, or obvious token utility, it might be a scam. When searching for a token address, you should easily find links to block explorers, official websites, and whitepapers. If not, treat it as a warning.
Also, note that Google ads can often lead to scam websites. Never click on ads at the top of Google search results. Always ensure you're visiting the official website to avoid malicious scripts like Wallet Drainers or other hacking software.
Verify the Code on Etherscan
Visit the block explorer for the relevant blockchain and check if the source code is verified. For example, on Etherscan (Ethereum’s block explorer), unverified code should raise immediate concerns. If the code isn’t verified, you might be dealing with a scam.
Why Wouldn’t Scammers Verify Their Code?
Once a contract’s source code is public, everyone can see the intentions behind it. It might reveal absurd tokenomics or a way for developers to steal your funds. Does this mean every unverified contract is a scam? Not necessarily, but it’s a serious red flag.
Check the Comment Section on Etherscan
Most block explorers include a comment section. While often empty, a scam project might have comments from angry users. If someone labels it a scam, there’s a 99% chance it is. If you become a victim, consider leaving a comment to warn others.
Check DappRadar’s Blacklist
Compare the token address against DappRadar’s token blacklist on GitHub. If the address appears on the list, it’s a confirmed scam.
Review Token Details on Reputable Indexes
If you can’t find the token on established platforms like CoinGecko or DappRadar, it’s likely a scam. If you see warnings like the one shown below, proceed with caution:
All legitimate tokens share their information with token index sites for verification. However, platforms like CoinMarketCap and CoinGecko have specific listing requirements. Therefore, not all tokens—legitimate or not—are automatically listed.
Check How Many Exchanges List the Token
If a token is only traded on a few decentralized exchanges (DEXs), it might be a scam. Listing on centralized exchanges requires KYC and additional trust. The larger the exchange, the better the token’s reputation.
That said, not all DEX-only tokens are scams. Some projects don’t need high trading volumes, and others cater specifically to Web3 users rather than traders.
However, tokens only available on DEXs are generally riskier investments, and you’re more likely to encounter scams. For instance, a token on the left might only be on DEXs, while the one on the right is available on multiple CEXs.
Examine Liquidity in the Token Pool
Before investing, check the overall demand and liquidity availability. It’s easy to review a token’s liquidity on platforms like Uniswap V2 or other DEXs.
Liquidity refers to the amount of cryptocurrency or tokens locked in a smart contract, allowing users to buy or sell assets on decentralized exchanges. If liquidity is below $100,000 or declining rapidly, you might be dealing with a scam.
When using DEXs, always check basic on-chain activity, including:
- Trading volume
- Number of transactions
- Unique active wallets interacting with the smart contract—i.e., the number of users connecting via Web3 wallets
If any of these metrics seem unusual, conduct further research.
Use Third-Party Analysis Tools
Here are some useful token analysis tools:
- Smell Test: Automatically audits tokens and scores them out of 100. Lower scores indicate a higher likelihood of being a scam.
- Honeypot: Identifies smart contracts with intentional vulnerabilities designed to trap attackers. Whether you’re a hacker or not, avoid these contracts.
- DEXtools: Tracks real-time token prices and helps assess a token’s true value dynamically.
Scammers exist both in the crypto world and beyond. By following these tips, you can avoid fake tokens designed to steal your funds.
👉 Explore advanced token analysis tools
Frequently Asked Questions
What is the most common red flag for a token scam?
Unverified source code on block explorers like Etherscan is a major warning. It often indicates hidden malicious functions or poor development practices.
Can a token be legitimate if it’s not on CoinGecko?
Yes, but it’s riskier. Reputable indexes have strict criteria, so absence might mean the token is new or doesn’t meet requirements. Always research further.
How important is social media presence for token legitimacy?
A strong, engaged community is a positive sign. However, high follower counts with low interaction or generic comments often indicate bots or fake engagement.
What should I do if I suspect a token is a scam?
Avoid investing, report it on block explorers, and warn others in comment sections. Use blacklists and analysis tools for confirmation.
Why is liquidity important when evaluating a token?
Low liquidity can make it hard to sell your tokens without affecting the price. It may also indicate a lack of trust or an imminent scam.
Are all honeypot contracts illegal?
Not necessarily, but they are risky for users. Avoid interacting with contracts labeled as honeypots, as they may lead to financial loss.