Another teaser headline.
The problem seems to be with Apple support being susceptible to social engineering.
Let's hope they start training staff properly.
If the hacker did their homework, anyone would have thought the attacker was the victim. That's what social engineering attacks do. Without the facts it's impossible to place blame, but Apple probably just did what anyone else would have done in the same situation.