Oh, most certainly, some of them in branch offices of multinational corporations. The better ones have hard drives for storing print jobs, FTP and configurable web pages, etc. I know of one local company which was appalled to find that their printer was being used to host a kiddie porn FTP site.
This is actually a fairly common configuration when the IT guy doesn't know how to set up a VPN (don't they teach that in computer classes any more?). They just drop it on the outside of the firewall, maybe set up DDNS from the built in configuration, and VIOLA! Now their clueless boss thinks they're a wizard because they can print from anywhere.
More disturbing to me is the amount of security equipment hanging off the Internet, an appalling amount of it with default or stupid passwords. I'm a physical security professional, key cards, security cameras, alarm systems, and the like. On the LinkedIn forums the question is fairly often posed "How do I let my customer view video from off-site?" Nine out of ten of the resulting answers are, "Put it on the Internet outside the firewall and configure DDNS." A ridiculous percentage of the IoT DDOS attack last year consisted of security cameras and DVRs/NVRs.