A threat actor gained access to the GitHub account of a Syscoin cryptocurrency developer and ultimately replaced the Syscoin official Windows client with one that contains malware. These clients allow users to run a Syscoin node, used to mine the cryptocurrency, and manage their Syscoin funds. The malicious Windows client was infected with the Arkei stealer, a malware that steals and dumps passwords and cryptocurrency wallet private keys. Users of Syscoin are now being warned that if they downloaded version 184.108.40.206 of the Syscoin Windows client between June 9, 2018 and June 13, 2018, their systems may be infected with malware. The NJCCIC recommends all users of Syscoin review the Medium blog post for more information on the incident. All users that installed version 220.127.116.11 between the dates listed above are advised to immediately uninstall it and run an anti-malware scan on their system to remove threats.