Deutsche Telekom has published a live overview of internet security. It's good news, just look at the
top 5 attack types.
Here's a screenshot, in case Telekom learns that traceroute isn't a weapon and starts excluding it from the list of attack types:
I'm going to assume that 50% of what Telekom sees is innocent, ie. half the
attacks on SMB protocol are fat-fingered configurations. (I know I've fat-fingered someone's port 5353 not long ago.) That leaves 13 million SMB attacks last month, 690,000 traceroute invocations, and the other kinds of attacks are less common than traceroute.
If there are fewer attacks than traceroute invocations on everything except that one notorious Microsoft target, the world can't be too badly off. Have a nice day.