Here is a link to an article with detailed tips on recognizing and reacting to a malicious email. I'll summarize some of the tips below but this is a worthwhile read for you and something to pass along to family as well.
1. The sender's email address is not correct. The email may say it is from Sean Ahern but the real email address is as8as9fjklks@hacker.com.
2. The sender doesn't seem to know the addressee. The email may say "Dear He/She" or something very vague or general.
3. Embedded links have weird URLs. If you look at the link in this email above it displays as an actual website. If the link is malicious it will probably display a bunch of nonsense and characters.
4. The language, spelling, and grammar are "off". If it seems like someone from a foreign country that doesn't know English wrote the email or it is written like a kindergarten student, it is probably a malicious email.
5. The content is bizarre or unbelievable. If you are offered something too good to be true or someone other than one of the tech team is asking you to update your password or account info then it is probably malicious.
One important thing to remember is to never click on a link or download/open an attachment from an email that you weren't expecting. If you have any questions or concerns about emails you receive do not hesitate to ask. We'd rather spend time checking it out instead of dealing with the fallout of an attack.