I agree with the sentiment, but just to be clear: There are valid reasons to allow MySQL to talk to the wider internet, the most important one being off-site replication.
If you do need your mysql to be exposed to the internet you can use bind_address=x.x.x.x or some kind of firewall.
If you do need your mysql to be exposed to the internet you can use bind_address=x.x.x.x or some kind of firewall.