So I woke up this morning to this email from our central IT department at my university (edited for their spelling mistakes):
"Your device is exposing a recursive DNS resolver and an SSDP service to the internet which is being leveraged in a DDOS attack."
They've already isolated its network jack since the email came in an hour ago. I'm away for the holiday but will have to deal with this on Sunday now. Any suggestions? Personally, I'm inclined to say they're bullshitting to get revenge for complaining about the internet outage we had yesterday and calling them out for never logging a downtime incident for it.