Name of the Vulnerable Software and Affected Versions sj-tw-abc versions (affected versions not specified)

Description The issue concerns malicious code within the sj-tw-abc package, which downloads and runs a script. This script opens a reverse shell in the system, potentially giving an outside entity full control of the computer.

Recommendations Remove the sj-tw-abc package, however, be aware that this may not remove all malicious software resulting from its installation. Consider any computer with this package installed or running as fully compromised and rotate all secrets and keys stored on it from a different computer.