40,000 small office/home office, or SOHO, routers have been exploited by an Internet-borne worm and used to launch distributed denial-of-service attacks. The devices ship with default credentials, which attackers have been able to exploit en masse. The vast majority of these malware-infected, devices, are located in Thailand and Brazil. One of the manufacturers whose products have been targeted says it only sells its devices to consultants and integrators. In response, some vendors said they had been offering firmware patches against the flaw since 2005.”]
Source: https://www.cuinfosecurity.com/router-hacks-whos-responsible-a-8233