Name of the Vulnerable Software and Affected Versions portionfatty12 (affected versions not specified)

Description The issue concerns a malicious package designed to steal user data. When installed, it uploads the user's public SSH keys to a remote server.

Recommendations Consider the system compromised if this package is found in your environment and assess if further response, such as rotating all credentials found on the compromised machine, is necessary.