This was a simulated phishing exercise designed to help improve security awareness. No credentials were captured and no action is required.
What should have raised suspicion?
Phishing attacks are one of the most common entry points for account takeovers and data breaches. Spotting them early protects both you and the company.