Cheap IOT tat...
There's been loads of articles on this very site about all of the security vulnerabilities of internet connected IOT tat. Kettles, barbeques, cctv, you name it, Shodan will find it. A lot of manufacturers (and not just Chinese ones) are fond of the odd default password, hardcoded test certificates, open telnet ports...
Has Mirai already been forgotten?
But it is a stretch to blame the chip manufacturer.