Simple Service Discovery Protocol (SSDP) part of the UPnP protocol standard to target home and office devices, researchers warned. The weakness in the Universal Plug-and-Play (UPnP) standard could allow an attacker to compromise millions of its consumer and business devices, which could be conscripted by them to launch an effective DDoS attack on a target. About 38 percent of the 11 million Internet-facing. devices, i.e. over 4.1 million devices, in use are potentially vulnerable to being used in this type of reflection.
Source: https://thehackernews.com/2014/10/reflection-ddos-attacks-using-millions_16.html