Hello Raymond,
Apple is right, if you are not using a Jailbroken device which allows you to install unauthorized apps and in turn making you susceptible to malicious code. Phishing attempts are a mute point regarding hacking the device as long as it is not Jailbroken. Phishing attempts are designed to trick you into providing your credentials, if they included any links to malicious applications then you would not be able to install if your device is not Jailbroken. You don’t know if everything with your providers equipment is safe, that’s why we recommend Express VPN. If no one else has had physical access to your iPad and it is not Jailbroken then you don’t have much to worry about but if you want to be sure you can find a guide here on resetting your iPad to factory defaults.