ISC StormCast for Thursday, January 12th 2017

By Johannes B. Ullrich, Ph.D. Hancitor/Pny/Vawtrak installed by Malicious Word Document in Fake Parking Ticket E-Mail
https://isc.sans.edu/forums/diary/HancitorPonyVawtrak+malspam/21919/
Godaddy Revokes > 6,000 SSL Certs After Validation Bug
https://www.godaddy.com/garage/godaddy/information-about-ssl-bug/
DVR Master Password List Leaked
https://www.pentestpartners.com/blog/leaked-dvr-creds-added-to-the-iot-fail-list/
Autofill Enables Information Leakage
https://github.com/anttiviljami/browser-autofill-phishing
More Here