Our Data Sources

Comprehensive database of DeFi exploits, rug pulls, and protocol hacks with verified loss amounts. One of the most complete on-chain hack records available publicly.

Curated timeline of crypto failures, scams, and hacks maintained by Molly White. Exceptional editorial quality with sourced reporting on each incident.

Community-maintained database of scam URLs, fraudulent addresses, and blacklisted domains. Used for cross-referencing reported wallet addresses.

Comprehensive incident registry of blockchain hacks and exploits maintained by the SlowMist security team. Covers DeFi, CEX, NFT, and cross-chain bridge incidents with detailed post-mortems.

Real-time token security analysis covering honeypot detection, buy/sell tax rates, mintable supply, trading pause ability, blacklist status, and LP lock percentage. Supports 30+ blockchains with no API key required.

Dedicated honeypot detection for EVM tokens. Simulates buy/sell transactions to determine if a token prevents selling.

Solana-specific rug pull risk scoring. Analyzes token authority, freeze authority, LP lock status, and creator wallet history.

Decentralized real-time threat detection network with block-by-block on-chain monitoring. The Scam Detector bot flags phishing, rug pulls, and fake tokens using ML. Accessible via GraphQL API.

Community-reported scam address and URL database operated by TRM Labs — backed by former FBI, Secret Service, and IRS-CI analysts. Covers 16 fraud categories including phishing, rug pulls, and romance scams. REST API available. Synced automatically every 12 hours — new scam address reports are auto-drafted for admin review.

205,000+ blocked phishing domains targeting Web3 users. Maintained by MetaMask with contributions from ChainPatrol and SEAL. Updated in near real-time. Available as a public JSON file on GitHub.

Phishing domain blacklist and wallet address blacklist maintained by ScamSniffer. Web3-specific threat intelligence with real-time updates. Open-source data available with a 7-day publication delay.

U.S. Treasury Office of Foreign Assets Control list of sanctioned crypto addresses — includes Lazarus Group (North Korea), ransomware operators, and other state-linked threat actors. Freely downloadable and updated regularly.

Community-reported Bitcoin address abuse database covering ransomware, darknet markets, scams, and blackmail. Free public API for address lookups.

Real-time DEX pair data including price, volume, liquidity, and market cap across all major chains and DEXes.

Comprehensive token metadata, market data, and exchange listings. Used for verifying token identity and gathering project background information.

Block explorers for Ethereum, BSC, and Solana. Used for verifying transaction hashes, contract code, and wallet activity linked to reported addresses.

Visual wallet clustering tool that reveals token distribution and connected wallets. Useful for identifying team wallet concentration and coordinated selling.

On-chain entity tracking and wallet labeling. Helps connect anonymous wallet addresses to known entities and track fund flows.

Independent blockchain investigator producing deep-dive forensic reports on rug pulls, stolen funds, and coordinated scam networks. One of the most cited sources of scam intelligence in Web3. Now integrated via live RSS feed — new incidents auto-drafted to the registry every 6 hours.

Crypto commentator and investigator who actively covers exchange failures, scam networks, and high-profile fraud cases on X. Tweets monitored automatically every 4 hours — incident-related posts are auto-drafted to the registry for admin review.

Crypto security reporter covering rug pulls, exploit alerts, and scam warnings across Web3. Tweets monitored automatically every 4 hours — incident-related posts are auto-drafted to the registry for admin review.

Real-time hack and exploit alerts with monthly incident summaries. PeckShield is a leading blockchain security firm with active X and Telegram monitoring feeds.

Narrative analysis and post-mortems of major DeFi hacks and exploits. Well-structured archives covering every significant protocol incident since 2020.

Blockchain intelligence firm providing forensic analysis on crypto crime. TRM investigated the Drift Protocol $285M DPRK hack and the fake Ledger app laundering routes. Their public research is used for attribution of state-sponsored attacks.

Official U.S. government cybercrime reporting center. The 2025 IC3 report documented $11.4 billion in crypto fraud losses — a 22% increase from 2024 and the highest ever recorded. REKTgistry references IC3 annual reports for macro industry loss statistics.

The primary source of new reports on this platform. Victims, researchers, and community members submit incident details which are reviewed by our moderation team before publication.