In which case don't download from Devs you don't know with no forum account reputation, i'd call that evolution more than anything.
If Developers do not look after or care about a development then obviously its going to go that way , where users don't know who controls it or who is up-keeping it.
Most of that is the effect of a saturated market of pre-mined and insta-scammed crypto-"currency".
all things being equal.
Deal was that someone created new account named "Krugercoin", then posted "Krugecoin, mandatory update" post which had the malicious client. Real dev of krugercoin (Nibiru) had nothing to do with it.
Well, its like oldest scam in the internet. send email to gazillion ppl which states:
'BankNameHere' wants youre feedback, win an iPAD !
then the link goes to BankNameHere.easyurls.com and steals credentials. Easy as pie.
Lesson pretty much is, allways check what you click allways check what u download.