The world needs to be reformatted.
So many vulnerabilities like this are normal - devices are built to be easy to use, device "security" is just a "feature" - I never saw anything hacked like this back when I had to access devices via an RS232 connection to run administrative setups. I see so much stuff like this, high speed internet access helps too - I'm only seeing about 200 administrative login attempts an hour on the mail-server today, but never saw any back when the access speed was 9600 baud and there were very few spam emails and no malware deliveries either.
We need to fix these problems by preventing the problems, not just adding a new feature like having the router text your phone when you need to log into it - that's just a security feature that will be hacked.