What is the best practice if an email contains a link that seems suspicious?

Hovering over the link to check its destination is considered the best practice when dealing with a suspicious email. This method allows you to verify the URL without interacting with the potentially harmful link itself. By hovering over it, you can see where it really leads, which can help you determine if it’s a legitimate website or a phishing attempt designed to steal your information. This step is essential in avoiding unnecessary risks associated with clicking on unknown links, which could lead to malware installation or phishing scams.

The other options may not adequately ensure your safety. Clicking the link could directly expose your system to threats, while forwarding the email might spread the risk to your colleagues. Contacting IT is a prudent option but typically should be considered after taking initial precautionary measures to verify the link yourself.