Same scare tactic used by all phishing messages. You did the right thing by asking here first. They are looking for the ones that panic and call the number provided and that is when they are able to get the personal information to compromise your accounts. They can send out thousands of these messages and just need to fool a small percentage of them for a big gain.
To prevent being a victim of any phishing message, simply never call a provided number in an email/message or click a link and give that information. You always have legitimate ways to verify information, like you did here, and known numbers to Companies, Government Agencies, and Banks are readily available for confirmation without relying on anything provided to you.