Some emails are too good to be true such as having a good documented and well designed body with a simple link that opens a new tab yet instantly closes, in which it would simply send a script written by the attacker and sends information to his server. Even a simple pdf file or an image can contain an exploit to a person's device.

What information? Anything he wanted! He can even use undetectable payloads on your device and the rest would still be unknown. To simply avoid such emails, better use secured email servers such as Google, which detects emails with malicious content. And never ever trust anything unrelated or unexpected emails/links online.