Skip to Content

Experiencing a cyberattack? Get help now
Sign in

Open search

Platform
- Platform overview
  Platform overview
- Endpoint security
  Endpoint security
- Security operations
  Security operations
  - XDR - Extended detection and response
  - XDR with Next-Gen SIEM
- Identity security
  Identity security
  - ITDR - Identity threat detection and response
- Network security and infrastructure
  Network security and infrastructure
- Workspace protection
  Workspace protection
- Email security
  Email security
  - Email and phishing protection
  - Employee awareness training
- Cloud security
  Cloud security
  - Cloud workload protection
  - Cloud security posture management (CSPM)
- Explore managed detection and response with Sophos MDR.
Services
- Managed services
  Managed services
- Advisory services
  Advisory services
  - Advisory services overview
  - Security testing
- Professional services
  Professional services
  - Operational support
- Complimentary tools
  Complimentary tools
  - NIST assessment
  - NIS2 assessment
- Experiencing a breach? Get immediate help.
Solutions
Why Sophos
- Why Sophos
  Why Sophos
- About us
  About us
- Trust center
  Trust center
- Trusted by more than 600,000 customers worldwide. Read their stories.
Partners
- Sophos partners
  Sophos partners
- Partner ecosystem
  Partner ecosystem
- Find a Sophos partner near you.
Resources
- Threat intelligence
  Threat intelligence
- Resource center
  Resource center
- Blogs
  Blogs
- Subscribe to the Sophos blog.
Support
- Get help (Support)
  Get help (Support)
- Support resources
  Support resources
- Product Support
  Product Support
- Training
  Training
  - Sophos Academy
- Experiencing a breach? Get immediate help.
Get started

Focus Scroll Background

vulnerablity

RSS

Poisoned proxy PACs! The NPM package with a network-wide security hole…

Naked Security

CVE-2021-23406.

Javascript

node

node.js

NPM

Sandbox

vulnerablity

Poisoned proxy PACs! The NPM package with a network-wide security hole…

September 6, 2021

Platform

Platform overview
Endpoint security
Security operations
Identity security
Network security
Networking infrastructure
Email security
Cloud security
Calculator

Services

Managed services
Advisory services
Professional services

Solutions

Featured solutions
Industries
Public cloud security
Use cases
Compliance

Why Sophos

Awards and recognition
Blog
Case studies
Competitor comparison
Trust center
About us

Partners

Sophos partners
Resellers
Become a partner
Partner training

Resources

Threat intelligence
Resource center
Customer training

Secureworks

Product Terms

Support

Get help
Support resources
Product support

Get Started

Try for free

Legal

General
Modern Slavery Statement
Speak Out

Terms
Privacy
Legal

© 2026 Sophos Ltd. All rights reserved.