#1 Default Admin Credentials
According to the manual the web interface has default credentials.
The default user name of the system is admin and the default password of the system is ip6000. It is strongly recommeded to change the password, refer to “Changing System User Name and Password” on page 15-2.
#2 Default HTTP Transport
By default the device uses HTTP so all traffic including the admin credentials are transmitted in cleartext: