The report by Shadowserver shows that 454,729 public Kubernetes API endpoints in which 381,645 unique IPs allow some form of access.

Most accessible Kubernetes API servers are found in the United States – 201,348 (nearly 53%).

As per the report, 

"Public API access does not mean that these instances are fully open or vulnerable to an attack, it is likely that this level of access was not intended, and these instances are an unnecessarily exposed attack surface. They also allow for information leakage on version and builds."

The image from shadowserver shows the exposed cluster from all the countries.

References & Further Reading

[1]. Read the full report by shadowserver here

[2] API Security Issues Hinder Application Delivery