"Even with (defensive) automation, the number of cases keeps increasing." David Feldman
Simple Steps You Can Take to Identify Phishing Attacks
Check that the actual sender is someone you know, or someone you expect to recieve a file from.
A sender's email address might look legitimate, always check if there are no tricks of letter combinations (ie. rn instead m) or foreign language symbols that may be confused for other letters.
Uncommon typos or grammatical mistakes may also be an indicator that the sender of the email might not be from inside your institution, AI is helping threat actors to fix this past indicator of phishing attempts.
If you have access to highly sensitive information or exist within an exclusivive tier of a coorporate hierarchy, you are a high value target for threat actors. It is imperative you keep your job role in mind at all times, and know how big of a target you truly are.