Rug Pull Finder

Rug Pull Finder, operating under that alias, is a smart contract auditing firm headquartered in the United States of America. The firm offers security assessment services for blockchain-based projects, with a particular focus on non‑fungible token (NFT) smart contracts. Its core offering involves reviewing contract code to identify potential vulnerabilities before deployment. Clients engage Rug Pull Finder to obtain third‑party validation that their contracts meet accepted security standards. The company markets its expertise as a safeguard against exploits that could lead to financial loss or reputational damage. By positioning itself as an auditor, it aims to help projects build trust with users and investors.

In September 2022, Rug Pull Finder itself became the subject of a security incident during the minting phase of its own NFT collection. Two individuals exploited a flaw in the project’s smart contract that allowed them to bypass per‑wallet purchase limits and acquire 450 of the 1,221 available NFTs. The firm acknowledged that it had not performed an internal or third‑party audit of its own contract, despite receiving an anonymous warning about the critical vulnerability shortly before launch. After determining that the exploiters’ conduct was not illegal but rather an opportunistic use of the oversight, Rug Pull Finder paid 2.5 ETH to recover most of the taken assets. The recovered NFTs were later redistributed to the community through a free raffle, while the firm absorbed the associated financial loss. Security researchers highlighted the irony of the event, noting that the company failed to apply the preventive checks it promotes for others and chose not to remediate the underlying code after the incident.