Through personal responsibility? That is not scalable; look at how many compromised devices there are. We need a better solution as an industry.

Yep. Manufacturers / distributors should be held responsible. Aligning the incentives is half the battle.

A "do not connect to the cloud" physical flip switch on the IoT device is what I want. Where can I sign the petition for that?

A physical switch is extra BoM / cost, and doesn't make sense in the context of a networked device. Just make it LAN-first / LAN-only. Any Internet-enabled features should happen on the gateway, and be opt-in.

Yes, need to protect Azure from those evil manufacturers.

Azure AWS and cloudflare will survive, then everything else will pay them for protection; when all of the internet is captive, they will lobby for regulation to reduce the costs.

It would be better to get the regulation set up before stronger gatekeepers are created

"a better solution as an industry" = "corporate authoritarianism"

I'd rather these attacks continue, than they not exist at all, because the latter is only possible in a world without any freedom.