Fake Lyft Account-Security Alert and Credential-Phishing Scam
Phishing emails and texts impersonating Lyft claim the recipient's account has been accessed from an unknown device, directing them to a fake login page to steal credentials.
Part of: Account Takeover Scams
Last reviewed: 7 June 2026
Lyft user accounts hold saved payment methods, home and work address locations, and ride history — a package of data useful for fraud and further social engineering. Criminals send fake Lyft security alerts designed to alarm users into clicking a link to 'secure' their account before thinking to verify independently.
The urgency created by a security alert — especially one that implies an unauthorised person may be using your saved payment card to book rides — is a reliable trigger for hasty action. The fake alert appears in the form of an email or text that closely mirrors Lyft's branding.
Lyft's real security notifications appear in the Lyft app's notification panel and, for major events, by email from @lyft.com. Lyft does not send SMS links directing users to external sign-in pages to resolve security issues.
How this scam works on the Lyft brand
The phishing email claims a new device has signed in to the Lyft account, or that the account has been flagged for suspicious activity. It includes a 'Secure Account' button that leads to a fake Lyft login page. Once credentials are entered, the attacker changes the recovery email and password, locking the real owner out.
With access to the account, the attacker can book rides charged to the saved payment card, download ride history including home and work addresses, or sell the account access. Lyft accounts with high ride frequency and premium payment cards are particularly valuable.
Some variants target Lyft drivers rather than riders. A fake 'Lyft driver account review' email claims the driver's account has been suspended for a policy violation and that they must re-verify their identity through a link to restore access. The link captures driver's licence details and banking information under the guise of identity re-verification.
Common red flags
- A Lyft security email from a sender that is not @lyft.com
- A 'Secure Account' link in a text message — Lyft's security processes are handled within the app
- An email claiming your account is suspended and requiring re-verification of banking details
- The 'Lyft login page' URL is not lyft.com
- A driver receives a suspension notice by email with an urgent deadline to re-verify before losing access
How to protect yourself
- Open the Lyft app directly to check your account status — do not use links in suspicious emails or texts
- If the app shows no security alerts, the email is fake — mark it as phishing and delete it
- Enable two-factor authentication on your Lyft account under Account > Settings > Security
- Drivers should verify account status exclusively through the Lyft Driver app, not via email links
- If your account was actually compromised, contact Lyft support through the app: Help > Account and Payment
How to report it
- Report phishing emails to Lyft at [email protected]
- Report to the FTC at reportfraud.ftc.gov
- If your account was accessed, contact Lyft support immediately through the app
- If your payment card was charged for rides you did not take, contact your card issuer and report fraud
Frequently asked questions
How do I tell if a Lyft security email is genuine?
Check that the sender's full email address ends in @lyft.com. Then log in directly via the Lyft app to see if any security notice exists there. If nothing shows in the app, the email is fake.
A Lyft email says my account is suspended. Should I click the re-verify link?
No. Open the Lyft app directly. If your account is genuinely suspended, you will see a notice there and can contact support through the app. Do not click links in emails claiming to restore suspended accounts.