> The perpetrators of the campaign have not been identified, but it is known that the zero-days target routers and network video recorders from two vendors and *use the devices’ default passwords*. (emphasis mine) Once again, this only affects people who have almost no idea what they are doing. The router vendors could have prevented it with more secure default settings. My router lets me enable the admin interface for local connections only. That should be the default. The network video recorders are the owners’ fault. Whoever set those up must have followed some instructions to forward a port on their router. Those same instructions probably told them to change the default password. I’m not sure what those companies can do to fix this.