Strange email

It is a well-known scam!

Did you provide any potentially damaging information to anyone? If yes, you'll need to follow up, for example, with a credit card company, Apple, Social Security, your bank, etc.

If you gave you Apple ID password to a scammer, then

Change your Apple ID password https://support.apple.com/en-us/HT201355

Here is What to do after you change your Apple ID or password https://support.apple.com/en-us/HT204071

Learn about Phishing, Scams, Apple Practices,etc.

 See If you see apple.com/bill, itunes.com/bill, or an unfamiliar charge on your statement https://support.apple.com/en-us/HT201382

See Identify legitimate emails from the App Store or iTunes Store https://support.apple.com/en-us/HT201679

See How to avoid scams when using Apple Pay to send and receive money https://support.apple.com/en-us/HT208226

For scam related information from Apple including reporting scams to Apple see Avoid phishing emails, fake 'virus' alerts, phony support calls, and other scams https://support.apple.com/en-us/HT204759

Identify scams related to purported apple notifications--Eric Root.

“Apple will always address you by your name or the name they have on file for you, not Dear Customer, Dear Client or by using your e-mail address. The e-mail will be from @apple.com or @iTunes.com. E-mail addresses can be spoofed. You can go to Mail/View/Message/Show all Headers to see more. Apple emails won't have poor grammar/misspellings. Apple e-mails will never contain an attachment. Apple will never request personal information by email such as Social Security numbers, your Mother’s maiden name or full credit card numbers. … 

The only exception to the above I have noticed is if you order something from the Apple Store (apple.com), your receipt will be addressed to Dear Apple Customer. That is a receipt for a purchase you initiated.”

Learn about/Increase security

See If you think your Apple ID has been compromised https://support.apple.com/en-us/HT204145

Increase the Security of your Apple ID https://support.apple.com/en-us/HT201303

iCloud security overview  https://support.apple.com/en-us/HT202303

Ways to keep your information safe on Mac https://support.apple.com/en-gb/guide/mac-help/mh11402/mac

Use Two-factor authentication for Apple ID https://support.apple.com/en-us/HT204915

These scams are really quite common. And it’s getting worse. And you’re a target. Welcome to the club, too. We are all targets.

I routinely get scam mail purportedly from a friend, too. Though my friend died several years ago. At least that scam is obvious. That particular scam was built from data acquired during a Yahoo breach.

And other scams telling me my (long-since-changed) password—the scammers recovered my password from a web service server breach, and the scammers have also tried my email and that password against every other web service—and now they’re telling me (lying to me) that they have my password and my data and control of my camera. Some claim (lie) to have lewd pictures of me they took using the camera and the password, too; so-called “sextortion” attempts are common. Most of us have had our passwords exposed, too. This is why password re-use is bad. Which services have gotten breached: https://haveibeenpwned.com/

Here’s some quick reading:

Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support

Identify legitimate emails from the App Store or iTunes Store - Apple Support

See your purchase history for the App Store or iTunes Store - Apple Support

What to do? Set up two-factor authentication, as it makes it harder to wrest away control of your Apple ID:

Two-factor authentication for Apple ID - Apple Support

Sketchy bits highlighted:

Stray comma, odd header, mis-capitalized iPhone, and bogus URL, off the top... Plus other details mentioned in the linked article above...