This is bullshit.
I run Fail2Ban, and when I started working from home, I noticed a ton of connections to my SSH port. Not actually trying passwords... just connected. My config has passwords turned off, and just accepts certificates, so Fail2Ban is set to insta-ban anyone trying a password.
So I wrote a cron job to ban anyone connected according to netstat, which runs every 10 minutes.
First it was Germany[*] on the 3rd, then Sweden on the 7th, the US on the 8th, Malta on the 13th, Curacao on the 17th, Belgium on the 18th, Isle of Man on the 19, the UK and the Russian Federation on the 20th, and today (the 22nd) it's Lithuania's turn to be internet assholes.
I've got 19,227 banned IPs right now, with a 3 month TTL.
This only started with the COVID crisis.
* assuming the IP geolocation was correct, but they were all from the same country each time.