"Please be aware that for approximately 4.5 days, a link on our Download page and the file downloads on our Github release page have been serving two suspicious files of unknown origin." https://bitcoingold.org/critical-warning-nov-26/
With only two official developers how does this happen exactly and not once but twice?