Honeypot

What is Honeypot?

A honeypot is a type of scam where a malicious smart contract is designed to trap user funds. It typically allows anyone to buy a specific token but contains hidden code that prevents anyone except the creator from selling it.

How does Honeypot work?

1. An attacker launches a new token and provides liquidity on a DEX.
2. They market the token to attract unsuspecting buyers.
3. Users buy the token, and the price appears to rise rapidly.
4. The smart contract's transfer function contains logic that blocks sell orders.
5. The attacker eventually withdraws the liquidity or sells their own tokens, leaving investors with "bags" they cannot trade.

Why does Honeypot matter?

Honeypots are one of the most common ways beginner investors lose money in decentralized finance (DeFi). They exploit the permissionless nature of blockchains, where anyone can deploy any code without a central authority's approval.

Key features of Honeypot

• "Buy-only" functionality for most users
• Hidden malicious code in the smart contract
• Often advertised with high "hype" and low liquidity
• Only the attacker's address is whitelisted to sell
• Results in 100% loss for trapped investors

Examples of Honeypot

Many "meme coins" launched on platforms like Uniswap are honeypots; investors see the price going "to the moon" on charts but find that every attempt to swap the token back to ETH fails.