Is autorun malware a security issue for organizations running legitimate software, or is it just something that affects users running pirated software? Are organizations that run legacy software susceptible to autorun malware?