It is important to remember that there are scanners running over all IP addresses on the internet and checking for all the new vulnerabilities. So if you are not updating your services and one of your services has a vulnerability that already has an open source module to scan for it, then you are going to get scanned and you are going to get exploited. So it’s not just about having basic protection, it’s also about being really up to date, which not everyone is doing properly.
200ms lag for ram sounds like an exercise in patience that I will not succeed at.