A harmless mail from a company email address, maybe asking to register for a new mailing list. In reality, cybercriminals are the senders. This way they are trying to get acces to the company network. In broad daylight.
These attacks are called #phishing and even skilled users can have trouble with identifying these mails. Furthermore, more and more people who work from home have fallen victim to these attacks. Source: it-business.de