Whether you hear about exploits depends what you read. Are you aware of cryptocurrency mining malware? If not, why not? It infects Android phones.
Sure, but do you know your router is secure? Many consumer grade routers are not. Have you run a penetration tester against yours? Is its admin login visible from the outside?
If your router is insecure, and your RPi is on your LAN its potentially at risk: there have been recently reported, but quite old, faults in Linux crypto packages. These are now patched, but you'll may well be exposed if you haven't kept your RPi software updated.
Thats quite untrue. Several of the vulns discovered and reported during
2017 date back several years. Sometimes these are known to have been exploited, sometimes not.