Name of the Vulnerable Software and Affected Versions cxct versions (affected versions not specified)

Description The issue concerns malicious code within the cxct package, which is capable of finding and exfiltrating cryptocurrency wallets. Any computer with this package installed or running should be considered fully compromised.

Recommendations Remove the cxct package, however, be aware that this may not remove all malicious software resulting from its installation. Rotate all secrets and keys stored on the compromised computer immediately from a different computer.