You can email out to the whole company explaining things such as Spear Phishing:

http://www.response-it.co.uk/news/2016/10/23/spear-phishing-how-to-mitigate-risks?rq=phishing

and Ransomware explanations and examples:

http://www.response-it.co.uk/news/2016/10/27/ransomware-the-small-business-guide?rq=cyp

But do these go unnoticed? It's difficult to tell until this is put to the test.... A short test could be to wait until you get infected or breached and diagnose the attack and seal the hole, but a better proactive test is to test your employees before the attack happens.

We have worked recently with a few companies after Management approval to create a test Phishing site's to monitor how many people would fall for the above attacks which give great insights such as

1) How many people and who opened the email
2) How many people entered credentials
3) How many people clicked a link
4) How many out of dated devices opened the link

After the above is found, user training can be employed to fix all the below and the whole process can be repeated on occasion automatically.