Reading this article tells me why we are seeing phishing mails targeted to capture Apple account ID/Password combinations.
I suggest that nobody with an iPhone/Apple account clicks on a link supposedly sent to them by Apple, unless they requested it in the last few minutes.
This is a particularly nasty form of blackmail for profit. The authorities should be working with Paypal to capture these people. But who knows? It is hard for electronic money to just disappear, it always leaves a trace...