If it had been the VMG series then my re-action would have been entirely different. I only got to hear about the Zyxel's AMG1302.
Afaik no-one on this forum uses them as they are ISP modems used by KCom and locked down to Eircom. We dont have any of their users as regs. TBH at the time I thought it was only Eircom and didn't know about Kcom until later.
If you notice, no-one including the press publically announced this until a fix had been found and the ISPs concerned had started rolling it out.
Letting the world know that many thousands of AMG1302 are vulnerable and wide open to the world is hardly a good idea. They were in a state of the WAN interface being wide open and being publicly accessible to ANYONE, not just those who had released the exploit.
As ejs says the basic info about the flaw is and already was available. Once info was in the public domain then all it would take is script kiddies to start going through all of KCom/Eircoms IPs. It wouldnt take them too long to put 2 and 2 together. They then could possibly have access to a lot more info and do far more damage than the current situation which was being unable to access the internet.
Srsly if I'd said anything publicly then it would have been akin to announcing hey go attack the following IP ranges and you'll be right inside their network. There's currently x thousand modems wide open this week to do what you want with. Most, if not all ISPs knew what was going on quite soon, but decided it was best not saying anything until after the patches had been released otherwise you are just exposing many thousands more who do not read tech news and wouldnt have a clue how to block ports.
From what I can gather (my assumption) is that who-ever was behind the release this past week wasn't going after anything specific and it was probably more of a proof of concept type attack to show just what was possible, rather than actually hack user info.
IMHO the ISPs concerned did the best thing by trying to keep a lid on it until their modems were patched, the alternative could have been one heck of a lot worse.
Hopefully this has been a wake-up call to the industry.