Trend Micro’s Tony Yang home network researcher found that 35% of Internet-connected devices were using the MiniUPnPd UPnP devices. Trend Micro also found that most devices still use old versions of the Universal Plug and Play libraries. The abundance of devices that can be accessed over the Internet and have. have been abused on a large scale by cyber-espionage groups (APTs) and botnet operators. Users need to disable the devices whenever possible and always keep their devices up to date.
Source: https://www.bleepingcomputer.com/news/security/unpatched-upnp-enabled-devices-left-exposed-to-attacks/