January 23, 2026 Stormcast: Python Code Security, Fortinet Attacks, BIND DoS, and Smarter Mail Vulnerability

23 Jan 2026

CybersecurityVulnerabilitiesCodeAnalysisThreatIntelligencePythonFortinetBINDDenialOfServicePasswordSecurity

Johannes Ullrich presents the January 23, 2026 edition of the SANS Internet Storm Center Stormcast from Jacksonville, Florida. He reviews Bandit, a static code analysis tool for Python scripts. Xavier tested this tool on a Python script of about 1,000 lines that he wrote with AI assistance. The script was found to be reasonably secure, with only minor issues. An update covers ongoing attacks against Fortinet devices exploiting a single sign-on vulnerability. The December patch proves insufficient. Arctic Wolf confirms that attackers are exfiltrating device configurations, and users must reset their credentials. A denial-of-service vulnerability affects ISC BIND related to HHIT and DRI/BRI record types used for drone identification systems. A 3-byte record causes the server to crash. Finally, Smarter Mail has a vulnerability allowing attackers to reset the administrator password without authentication via their password reset API.