Buying

How to Avoid Getting Scammed When Buying a SaaS Platform

Scams in SaaS acquisition are real. Here are the red flags and how to protect yourself.

·7 min read

Buying a SaaS platform without proper safeguards can cost you hundreds of thousands of dollars and years of lost opportunity. The most effective protection is to work exclusively through established brokers, demand full financial verification, and structure every payment through an independent escrow.

Work Only With Reputable Marketplaces

Every legitimate SaaS deal in 2025-2026 flows through one of five recognized platforms: hades.ae, Acquire.com, Empire Flippers, FE International, or MicroAcquire. These sites require sellers to connect Stripe or Chargebee accounts, provide at least 24 months of Stripe statements, and submit churn data before listing. If a founder contacts you directly on Twitter, LinkedIn, or Indie Hackers with a “private” opportunity, treat it as an immediate red flag.

Verify Revenue and Churn Before Any Offer

Never accept a seller’s claimed MRR or ARR at face value. Require direct read-only access to Stripe, PayPal, or Paddle dashboards for a minimum of 30 days. Benchmark churn against current industry standards: below 3 % monthly net revenue churn for B2B SaaS under $50k ARR, and below 1.5 % for companies above $100k ARR. If monthly churn exceeds 5 %, walk away regardless of multiple.

Use an LOI and APA With Clear Escrow Terms

Once numbers check out, issue a non-binding Letter of Intent that specifies purchase price as a multiple of verified ARR (typically 2.8–4.2× for profitable SaaS in 2026). The subsequent Asset Purchase Agreement must route 80-90 % of the purchase price through a licensed escrow agent such as Escrow.com or the broker’s own escrow. Release schedules should tie 20 % of the total to a 90-day post-close performance holdback to cover undisclosed liabilities or customer refunds.

Run Technical and Legal Due Diligence

  • Confirm domain ownership via WHOIS and verify no liens or disputes.
  • Review all third-party dependencies and API keys; request written confirmation that accounts can be transferred.
  • Engage a SaaS-specialized attorney to examine customer contracts, data-processing agreements, and any open-source license obligations.
  • Perform a code audit or at least a dependency vulnerability scan; many small teams still run outdated Rails or Node versions with known CVEs.

Close Only After Full Data Room Access

Before wiring funds, insist on a complete data room containing bank statements, tax returns, customer support tickets, and churn cohort analysis. If the seller delays or provides incomplete files, extend the due-diligence period or reduce the offer price. Deals that close cleanly on hades.ae or FE International typically take 45-70 days from signed LOI to funded escrow.

What is the safest multiple to pay for a SaaS business under $200k ARR?

Most buyers in 2026 pay between 2.8× and 3.5× verified ARR when monthly churn stays below 3 % and the product has no major technical debt.

How long should the escrow holdback period be?

Standard practice is a 90-day holdback representing 15-20 % of the purchase price to cover post-close refunds, chargebacks, or undisclosed liabilities.

Can I buy a SaaS business directly from the founder without a broker?

Yes, but you must still use an independent escrow service and pay for your own legal and financial due diligence; skipping these steps dramatically increases scam risk.

Ready to acquire?

Browse curated digital platforms on hades.ae — every listing is built and owned by our team. View available platforms →