Comment What's the Real Danger? (Score 1) 76
This has got to be a REALLY small attack surface, right? I mean, first we have to exclude all the routers behind CGNAT since there should be no way to get to the SNMP port unless the carrier is doing a port forward for SNMP... which would be super weird. Then exclude 90% of all consumer-grade routers because most of them don't have SNMP capability or don't have it enabled, and even if so then it'd have to be a really idiotically set up router to not have that isolated only to internal network interfaces or have the built-in firwall block it.
That basically leaves misconfigured routers by people who think they know better but clearly don't. Am I missing something or should this actually be a really small number of devices?
Seems to me that Windows devices are still by far the most likely devices to be turned into a Botnet, though in all honesty there's quite a few Linux distros out there these days that have... uhm... questionable defaults?