Govt Orders WhatsApp, Telegram, Other Apps To Block Access Without Active SIM

New Delhi: The Indian government has ordered major messaging platforms — including WhatsApp, Telegram, Signal, Snapchat, ShareChat, JioChat, Arattai, and Josh — to block access for users who do not have an active SIM card linked to their devices. The directive, issued by the Department of Telecommunications (DoT), marks a major shift in how millions use app-based communication services.

The move falls under the new Telecommunication Cybersecurity Amendment Rules, 2025, which bring such apps under telecom-style regulation for the first time. Classified as Telecommunication Identifier User Entities (TIUEs), these platforms must now ensure that a user’s SIM remains continuously linked to the app within a 90-day window.

For users accessing these services on web browsers, the government has introduced additional safeguards. Apps must automatically log users out every six hours and require re-authentication through a QR-based login. The DoT says this will prevent criminals from misusing apps remotely, as every session must be tied to an active and verified SIM.

Officials argue that the rule closes a major loophole, since most apps currently verify a mobile number only during installation and continue to function even if the SIM is removed or becomes inactive. The Cellular Operators Association of India (COAI) has repeatedly flagged this gap, noting that SIM-independent app functioning increases the risk of misuse.

Cybercriminals, including those outside India, exploit this loophole by continuing to use apps even after changing or deactivating SIM cards, making it difficult for authorities to track fraud through call records, location logs, or telecom data. The COAI says mandatory SIM binding will maintain a strong link between the user, number, and device, helping curb spam, fraud calls, and financial scams.

Similar authentication norms already exist in banking and UPI apps, while SEBI has proposed tying SIM cards to trading accounts and using facial recognition for added protection. However, experts remain divided: some cybersecurity professionals told MediaNama that scammers could still use forged or borrowed IDs to procure new SIM cards, while telecom industry leaders argue that mobile numbers remain India’s strongest digital identity and that the new rules will reinforce cybersecurity and accountability. (Agencies)