Network Security, Supply chain, Third-party code

Supply chain attacks likely with exploitation of novel R programing bug

April 30, 2024

Source PC website developer. Real software development code. JavaScript code in text editor. Computer interface. Abstract technology background. Java Software engineer concept.

(Adobe Stock Images)

Threat actors could leverage a high-severity vulnerability impacting the R programming language, tracked as CVE-2024-27322, to enable arbitrary code execution during the deserialization of packages using the RDS format and potentially facilitate supply chain attacks, The Hacker News reports.

"For an attacker to take over an R package, all they need to do is overwrite the rdx file with the maliciously crafted file, and when the package is loaded, it will automatically execute the code," said HiddenLayer researchers Kieran Evans and Kasimir Schulz in a report, which noted that accessing the symbol associated with the RCS file would allow the execution of an expression with arbitrary code.

Such a security issue, which has already been addressed last week, has already prompted an advisory from the CERT Coordination Center noting that malicious RDS and RDX files enabling arbitrary code execution could be deployed through social engineering tactics.

"Projects that use readRDS on untrusted files are also vulnerable to the attack," added CERT/CC.

An In-Depth Guide to Network Security

Get essential knowledge and practical strategies to fortify your network security.

Learn More

SC Staff

Iran Flag Digital Binary Code Cyberpunk Technology Concept

Critical Infrastructure Security

Four ways security teams can protect against Iranian cyberattacks

Chuck Randolph July 11, 2025

Here’s how Iran leverages cyber to its advantage – and what critical infrastructure organizations can do about it.

Vulnerability Management

Total network compromise likely with unpatched Ruckus flaws

SC StaffJuly 10, 2025

Threat actors could leverage nine unpatched vulnerabilities impacting Ruckus Wireless Virtual SmartZone and Ruckus Network Director instances to facilitate the complete compromise of networks belonging to enterprises and major public organizations that commonly use the offerings to support their Wi-Fi infrastructure, according to BleepingComputer.

Glowing digital key on a dark circuit board symbolizing cybersecurity and data encryption. Cybersecurity awareness, data protection, digital security, IT, information safety, encryption concept.

Network Security

Exposed ASP.NET machine keys leveraged for network infiltration

SC StaffJuly 10, 2025

Attacks leveraging exposed ASP.NET machine keys have been deployed by initial access broker Gold Melody, also known as UNC961 and Prophet Spider, to facilitate network compromise as part of the TGR-CRI-0045 campaign, with such access later sold to other illicit actors, The Hacker News reports.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Supply chain attacks likely with exploitation of novel R programing bug

An In-Depth Guide to Network Security

Related

Four ways security teams can protect against Iranian cyberattacks

Total network compromise likely with unpatched Ruckus flaws

Exposed ASP.NET machine keys leveraged for network infiltration

Related Events

Rethinking SASE: A practical guide to data-first security in the modern enterprise

From fragmented to unified: Rethinking network security operations in the AI era

Fortifying the Foundation: Tackling Evolving Challenges in Network Security

Get daily email updates