This information came from Pat Castel. Apple System Engineer.
If you have been targeted by hacker pretending to be Apple and sending you a Fake Apple email like this:
It is a hoax.
They are trying to get some info from you in order to hack your Apple account (AppStore / iTunes Store) or even hack your bank accounts or credit cards.
Apple,Yahoo, Rogers or Bell will NEVER send you an email, they will simply BLOCK your access forcing
you to initiate contact and reestablishing your connection.
Another way around to check if the email is legit,
is to place your cursor on top of the link where it says CHECK HERE TO CHECK YOUR ACCOUNT.
DO NOT CLICK, after a few seconds the real identity of the sender will be revealed.
Now, if you have been caught, log into all your compromised accounts (Apple, credit cards, bank) and change right away your passwords, in some cases, you might have to change your User ID.
REMINDER: Please be cautious about clicking on links that are in messages which appear to be from your bank or Internet Service Provider, saying there is a problem with your account or your email. Many messages sent “from” financial institutions are an attempt to get your login and password. DO NOT click on links in these emails. Instead, type the email address of your bank’s website into your browser. These messages are often referred to as “phishing”.
A client, an intelligent and aware individual, received an email from her bank, saying there was a problem with a payment through her account. Unfortunately, she clicked on the link in the message before contacting us, but got suspicious and got in touch with us within minutes. We advised her to close that window, go to the real bank website and change her password immediately, then contact her bank by phone to advise them her account was at risk, as she’d used her real bank login and password to “login” at the fake website, thereby giving away her information.
This type of message “from” ISPs, banks, or other “trusted” institution arrives often. Being cautious is the best way to protect yourself. If you think the message might be real, pick up the phone and verify it with your bank, etc. Very few of these messages are real, and it’s better to delete and ignore, and be safe, rather than sorry.