In case you missed it, according to the OP, the previous point release (1.82.7) is also compromised.
Yeah, that release has the base64 blob, but it didn't contain the pth file that auto triggers the malware on import.
alt Hacker News
Yeah, that release has the base64 blob, but it didn't contain the pth file that auto triggers the malware on import.