Name of the Vulnerable Software and Affected Versions bb-builder versions (affected versions not specified)

Description The issue concerns malicious code embedded in the bb-builder package, which executes an executable targeting Windows and uploads information to a remote server. Any computer with this package installed or running should be considered fully compromised.

Recommendations Remove the bb-builder package, however, be aware that this may not remove all malicious software resulting from its installation. Rotate all secrets and keys stored on the compromised computer immediately from a different computer.