Name of the Vulnerable Software and Affected Versions midway-xtpl versions (affected versions not specified)

Description The issue concerns malicious code in the midway-xtpl package, which uploads system information to a remote server, downloads a file, and executes it. Any computer with this package installed should be considered fully compromised.

Recommendations Remove the midway-xtpl package, however, be aware that this may not remove all malicious software resulting from its installation. Rotate all secrets and keys stored on the compromised computer immediately from a different computer.