A sender of an email should not bear responsibility for an underlying email system's poor information security (expect in specific cases in which they are highly-technical and are transferring highly confidential information).
It is the administrator(s) of the email server's responsibility to ensure that both their users and the people they interact with are given basic protections against hackers.
There is no point in blaming a hacker for attacking an email server as they will not listen to you.
The only sane solution is for the administrator of the email system and those that hired them to be responsible for how secure their systems are and to act accordingly.
A sender of an email should not bear responsibility for an underlying email system's poor information security (expect in specific cases in which they are highly-technical and are transferring highly confidential information).
It is the administrator(s) of the email server's responsibility to ensure that both their users and the people they interact with are given basic protections against hackers.
There is no point in blaming a hacker for attacking an email server as they will not listen to you.
The only sane solution is for the administrator of the email system and those that hired them to be responsible for how secure their systems are and to act accordingly.