Basic question about IoT vulnerability

I think I have a misunderstanding of how IoT devices are vulnerable. I have read things about even lightbulbs being vulnerable and being used for things like DDos attacks and in some cases gaining access to your Wi-Fi if the device makers were stupid enough to store the password in plain text. What I don’t understand is, wouldn’t these devices need to be exposes externally via your router to be hacked? Why would anyone expose their lightbulb externally? What am I missing?

Is it that someone can come in range of your house and then attack it? I live in the middle of no where and my driveway is a half a mile long so would I have any worry about having IoT devices?

submitted by /u/Brewhaus3223
[link] [comments]

Original article: Basic question about IoT vulnerability
Author: /u/Brewhaus3223