An exit scam plays out when the operators of a crypto project, exchange, or investment scheme cut off communication and vanish with user funds, after having spent months or even years building a credible public presence. Unlike a hack, no outside attacker is involved: the people running the platform are themselves the thieves, and the "exit" is the final, planned act of the fraud rather than an accident.
The pattern usually follows a predictable arc. A project raises deposits or launches a token with promises of high, steady returns, hires visible spokespeople or marketing teams, and processes withdrawals normally to build trust. Once inflows peak, withdrawals slow, support channels go quiet, and the team disappears along with the wallet keys, domain names, and social accounts. Centralized exchanges are especially exposed because customers hand over custody of their coins: Turkey's Thodex halted withdrawals and its founder fled the country in 2021, while Canada's QuadrigaCX collapsed in 2019 after its CEO died reportedly holding the only keys to wallets that regulators later found were largely empty.
Exit scams differ from a rugpull, which usually refers more narrowly to developers draining a decentralized exchange's liquidity pool, though the two terms overlap in casual use. Many exit scams are also structured as Ponzi schemes, paying early withdrawals from new deposits until inflows dry up. Warning signs include anonymous founders, guaranteed returns, pressure to reinvest, and sudden restrictions on withdrawals.