A new distributed denial-of-service attack (DDoS) vector has ensnared Plex Media Server systems to amplify malicious traffic against targets to take them offline. Netscout researchers have identified about 27,000 abusable servers on the Internet to date. DDoS-for-hire services are weaponizing Plex Media Servers to beef up their attack infrastructure, according to the cybersecurity firm. Plex makes use of Simple Service Discovery Protocol (SSDP) to scan other media devices and streaming clients, but this gives way to a problem.
Source: https://thehackernews.com/2021/02/cybercriminals-now-using-plex-media.html