Sucuri emails create a security issue

Below is an email FROM Sucuri. It sends the username, password, and website in plaintext in the same email. It sits unencrypted on an email server and possibly sends through an unencrypted connection to me. A message saying the password was changed would be enough information, and keep me safe.

Event: Settings Updated
Website: https://www.MYSITE.com
IP Address: 88.888.172.88
Reverse IP: host-88-888-172-88.WXXX.com
Date/Time: May 17, 2019 3:51 pm
User: YOURUSERNAME (YOURUSERNAME)

Message: Writing settings changed
The value of the option mailserver_pass was changed from 'password' to 'YOUR-UNENCRYPTED-FULL-PASSWORD-HERE-FOR-ALL-THE-WORLD-TO-SEE'.