Did anything look out of the ordinary? Did you recognize the senders address? Was it similar but not the same as an official email?
Information Technology <it@company.co>
At CentraCom any email from an external sender should have a caution message at the very top. Do you see this banner?
If you ever think that an email is suspicous it is better to err on the side of caution. Forward it to phish@CentraCom.com and the Helpdesk team will look into it.
Cybercriminals love to embed malicious links in legitimate-sounding copy. Hover your mouse over any links you find embedded in the body of your email. If the link address looks weird, don't click on it. If you have any reservations about the link, send the email directly to your security team.
Is the email addressed to a vague "Valued Customer?" If so, watch out; legitimate businesses will often use a personal salutation with your first and last name.
Invoking a sense of urgency or fear is a common phishing tactic. Beware of subject lines that claim your "account has been suspended" or ask you to action an "urgent payment request."