Name of the Vulnerable Software and Affected Versions Package version 2.0.2

Description The issue concerns malicious code in the package that targets the Ethereum cryptocurrency, allowing it to perform unauthorized transactions to wallets not controlled by the user.

Recommendations Remove the package from your environment to prevent further unauthorized transactions. Additionally, ensure that no Ethereum funds were compromised due to this issue.