One of the simplest ways to improve security is to ensure that default usernames and passwords are altered. Do this routinely before deploying anything and you can save yourself a lot of headaches.
Here is my old timey wisdom on the topic:
Always change the default password.
Thanks