They have me in a weird spot, because I fundamentally don't really like the sheer volume of information they are MITMing at all times, and don't really like the idea of letting them do so for my small site.
But their decisions with respect to security threats pretty consistently seem well measured and as minimally invasive as they can be (eg they have intervened and rewritten content as a result of a supply chain attack, but were very transparent that it was desperate measures, that they didn't really want to do it, and only did it by default for the free users that were most likely not to know enough to enable it themselves). They've also pushed back against stuff like piracy shield trying to turn them into outright surveillance for private companies.
Their business model and size obligates them to walk carefully - they want users and clients to forget or not know they even exist and have such a leverage over them - that really helps them selling their products. I think they have top of the shelf specialists, hardware, etc and that naturally upholds their frightening monopoly. Piracy shield goes against them masquarading as invisible non-actors and puts a lot of unpaid responsibility on them.
According to the site, home routers and dvrs were part of the devices used. Looks like manufacturers abandoning devices without updates is becoming more and more of an issue.
I got tons of DDoS attacks from China & Singapore lately (including a lot of people I know around me running servers). So maybe this is true for this specific DDoS attack, but in general this chart can't be correct. A lot of DDos is happening from Tencent cloud & Alibaba cloud as well!!!