I'd like to flatter myself that I fit into category A.
That said, it's still a major concern for IT pros. You can harden a network till the cows come home. All it takes is one careless user, or a small configuration mistake, or a software bug and it's all for naught.
And yeah, info from shodanhq has been on our radar screens since it went public back around 2010.
But that's not the scary part. The scary part is that it's sure as certainty there are other unpublicized darkhat sites that are also doing this - plus a whole lot more - as even a quick visit to the deepweb will show.