If you’re running Raspbian or one of the standard Raspberry Pi Linux distros, the default account is pi with a password of raspberry.
Besides running PiAware, I also run a SSH honeypot on one of my Raspberry Pi systems. This honeypot tracks attackers looking to take over Internet-connected systems.
And just about every SSH login attack that my honeypot records has [pi/raspberry] as one of the combinations tried.
Please change the default password on your Pi system!