Supposing that they, y’know, try to keep their setups secure anyway. With how much you see about breaches of different sites, it’s hard to imagine individuals and smaller groups being able to keep their stuff secure.
Although, they may also benefit from being lower value targets in some respects, I suppose?
So many hacks nowadays aren’t even people intending to target you. If you plugged your toaster into the internet, and left it on an unsecured server, both the toaster and the server would be hacked before the end of the day. Bots are constantly probing for unsecured cameras, security devices, laptops, servers, Wi-Fi networks, really anything that’s plugged into the internet. The easiest ones are cameras that are installed with a predetermined password that is shred betwee# n all sold devices. Of course the manufacturers will tell you to change the password, or something along those lines, but how often do people actually read the instructions?
For your reading pleasure: https://www.theatlantic.com/technology/archive/2016/10/we-built-a-fake-web-toaster-and-it-was-hacked-in-an-hour/505571/
Reading the logs for the incoming connection attempts of a fresh machine should be mandatory for everybody that wants to get a box online. It’s enlightening.
And it already was scary twenty years ago.