Editing Denial-of-service attack (section)

===SSDP reflection attack===
In 2014, it was discovered that [[Simple Service Discovery Protocol]] (SSDP) was being used in [[DDoS]] attacks known as an [[Simple Service Discovery Protocol#DDoS attack|SSDP reflection attac''k'']] ''with amplification''. Many devices, including some residential routers, have a vulnerability in the UPnP software that allows an attacker to get replies from [[List of TCP and UDP port numbers|UDP port 1900]] to a destination address of their choice. With a [[botnet]] of thousands of devices, the attackers can generate sufficient packet rates and occupy bandwidth to saturate links, causing the denial of services.<ref>{{Cite web|url=https://www.cisecurity.org/ms-isac/|title=Multi-State Information Sharing and Analysis Center|website=CIS}}</ref><ref>{{cite web|url=https://www.us-cert.gov/ncas/alerts/TA14-017A|title=UDP-Based Amplification Attacks|date=18 December 2019 }}</ref><ref name="Cloudflare Blog 2017">{{cite web |last=Majkowski |first=Marek |url=https://blog.cloudflare.com/ssdp-100gbps/ |title=Stupidly Simple DDoS Protocol (SSDP) generates 100 Gbps DDoS |date=2017-06-28 |work=The Cloudflare Blog |access-date=2024-11-20}}</ref> Because of this weakness, the network company [[Cloudflare]] has described SSDP as the "Stupidly Simple DDoS Protocol".<ref name="Cloudflare Blog 2017"/><!--"Stupidly Simple DDoS Protocol" is in the article title only, good general description of the vulnerability though-->