While updating the security awareness training, a security analyst wants to address issues created if vendors' email accounts are compromised. Which of the following recommendations should the security analyst include in the training?

While caution around images in emails is prudent, it does not directly address the primary risk posed by compromised email accounts. This recommendation focuses more on recognizing phishing emails rather than the broader issue of familiar contacts being targeted, which is the main concern when a known vendor's account is compromised.

Deleting emails from unknown partners is a reactive measure that may prevent some phishing attempts but does not address the issue of compromised accounts from known vendors. Instead, employees must be trained to scrutinize communications from familiar contacts, as these can be the source of highly convincing attacks.

While sending invoices as attachments may add a layer of security by preventing direct links in emails, it does not directly address the risk of compromised accounts. Attackers can still send malicious attachments or phishing requests disguised as legitimate communications, thus this recommendation is not sufficient to mitigate the specific risks associated with compromised email accounts.