Why is security still an afterthought?
You know, forty odd years ago, I could understand and sort of forgive the original framers of the internet and its protocols for not baking in proper security. Everyone trusted everyone else, and there just wasn't a mindset of "what if someone malicious wanted to break this for the lulz?"
These days, it's rapidly starting to irritate me that companies are rushing products to market, and STILL aren't considering security seriously. No, using a hardcoded or preshared factory-set key is not 'taking security seriously'.
Then again, if they can't properly secure a pacemaker or an insulin pump, what hope have we got they'll try particularly hard with a lightbulb...