Syscoin
Summary
Syscoin (SYS) is a dual-chain blockchain protocol originally launched in 2014 that combines a Bitcoin-derived UTXO chain with an Ethereum-compatible smart contract layer called NEVM. In June 2026, a critical proof-parsing flaw in its cross-chain bridge allowed an attacker to mint approximately 5 billion unauthorized SYS tokens — more than five times the circulating supply — valued at roughly $8.5–10 million; all funds were ultimately recovered and burned. The project has accumulated a pattern of serious concerns spanning its history: a 2014 ICO fund theft, a 2018 GitHub supply-chain compromise, and extensive 2024 governance allegations including a Dutch criminal investigation into alleged fraud, embezzlement, and unauthorized token issuance by its own foundation directors.
Connected Entities
1 entities · 10 linked investigations- + 4 more
Timeline(14 events)
2014-01-01
Syscoin launches via crowdsale, raising approximately 1,500 BTC; approximately 750 BTC subsequently misappropriated by escrow agent Ryan Kennedy (Moolah/Alex Green).
99Bitcoins2014-10-28
London High Court orders Moopay (Moolah parent) to return 750 BTC to Syscoin developers by 16:00 GMT.
99Bitcoins2018-06-09
Attacker breaches Syscoin's GitHub account and replaces the Windows 3.0.4.1 installer with a trojanized binary (Trojan:Win32/Feury.B!cl); malicious file available for approximately four days.
Bleeping Computer2024-07-26
Criminal complaint filed with the Dutch Functional Public Prosecutor's Office alleging fraud, embezzlement, document forgery, money laundering, and unauthorized issuance of 100 million SYS tokens by Syscoin Foundation directors.
Cryptopolitan2024-07-28
Cryptopolitan publishes allegations against Syscoin Foundation directors Jagdeep Sidhu, Willy Ko, Christopher O'Shea, Michiel Naring, and Bradley Stephenson regarding unauthorized 100 million SYS token creation and treasury mismanagement.
Cryptopolitan2024-09-10
Syscoin Foundation files legal statement of defence with Dutch court contesting proposed director dismissals.
Binance Square / Syscoin Foundation2024-09-26
Dutch court hearing held; directors Sidhu, O'Shea, and Naring alleged to have withheld financial statements; judge orders production of SYS Labs financial records and accounting.
TechBullion2026-06-07
Attacker exploits proof-parsing flaw in Syscoin's cross-chain bridge, minting approximately 5 billion unauthorized SYS tokens (addr: sys1qgaelv690g7wwp2xchfdh0enf5uewzq5sm9wvcw); Syscoin pauses bridge and publishes preliminary postmortem same evening.
Rekt News / CryptoTimes2026-06-08
Public disclosure of exploit widely reported; SYS price drops approximately 40% from $0.0022; exchanges contacted to freeze tainted deposits.
CryptoTimes2026-06-09
Syscoin team posts recovery address on-chain and reports attacker made contact to discuss whitehat bounty.
Rekt News2026-06-10
Attacker returns 5 billion SYS tokens via on-chain transactions to recovery address; exchanges authorized to reopen native SYS deposits and withdrawals.
Cryptopolitan2026-06-18
Syscoin publicly announces completion of recovered token burn via OP_RETURN transaction, restoring pre-exploit circulating supply. Bridge remains offline pending final security audit.
Cryptopolitan / CoinSpotDecision Log
- hash: 7qbHcwKjbDgn8ZdL7HvQ95xZnCR4xXCj18GQq5CxkPGV
This investigation is cryptographically anchored to the Solana blockchain and source URLs are archived via the Internet Archive.
model: claude-sonnet-4-6
generated: 6/27/2026, 5:17:43 PM
last updated: 6/27/2026, 5:17:55 PM
avoid.net — verified advice for a post-truth world