Several users have reported receiving emails that seem to be from a trusted external partner but contain suspicious links. You suspect it to be a phishing attack. What would be your immediate step to mitigate the risk of phishing using built-in Google Workspace settings?