While updating the security awareness training, a security analyst wants to address issues created if vendors' email accounts are compromised. Which of the following recommendations should the security analyst include in the training?

While caution is warranted when interacting with emails from new vendors, this recommendation does not directly address the risks associated with compromised accounts. Compromised familiar accounts could also contain images that are safe, so merely avoiding images does not provide comprehensive protection against phishing attempts or other malicious activities.

Deleting emails from unknown service provider partners may prevent interaction with potentially harmful emails, but it does not adequately address the risk posed by compromised familiar accounts. This approach lacks a proactive security strategy, as it disregards the possibility of legitimate communication that could be important for security awareness and response.

Requiring invoices to be sent as attachments does not address the core issue of email account compromise. Attackers can still send malicious attachments from familiar accounts, making this recommendation insufficient as a standalone security measure. The focus should instead be on recognizing suspicious behavior regardless of how invoices are delivered.