India Tightens Digital Security: Messaging Apps to Stop Working Without Active SIM Cards

Rajeev Sharma
Messaging Apps

The Government of India has announced sweeping cybersecurity reforms that will directly impact users of major messaging apps and social apps. Under the newly introduced Telecommunication Cybersecurity Amendment Rules 2025, no messaging application will function unless the user’s SIM card remains active and continuously linked to their account. For the first time, app-based communication platforms are being regulated under the same framework as telecom services.

These new rules cover widely used apps such as WhatsApp, Telegram, Signal, Snapchat, ShareChat, JioChat, Josh, and Arattai. The Department of Telecommunications (DoT) believes that mandatory SIM-binding will significantly enhance national cybersecurity and curb rising cyber fraud incidents.

🔹 Key Changes Under the New Rules

1. Messaging Apps Reclassified as TIUEs

The government has placed all major messaging platforms under the category of Telecommunication Identifier User Entities (TIUEs). This brings them under stricter monitoring and regulatory oversight.

2. SIM-Binding Required Within 90 Days

All platforms are required to adopt the following measures:

  • The user’s active SIM card must remain continuously linked to their account.

  • If a SIM becomes inactive, disabled, or removed, the app will immediately stop functioning.

  • This binding must be implemented across all accounts within 90 days.

3. Tighter Login Rules for Web Users

Web-based logins will now follow stricter security controls:

  • Automatic logout every 6 hours

  • Re-login only via fresh QR code scanning, ensuring each session is verified securely

According to DoT, these new rules will restrict criminals who frequently misuse inactive, unverified, or illegally obtained SIMs to commit online fraud, scams, and impersonation.

Also read: ChatGPT Atlas AI: Download, Devices & Key Features

🔹 Why the Government Introduced These Rules for Messaging Apps

Previously, messaging apps continued to operate even if the associated SIM card was removed or became inactive. This loophole allowed cybercriminals to communicate without traceability, as authorities could not track their identity through call logs, location data, or carrier records.

COAI (Cellular Operators Association of India) also noted:

  • Apps only verify SIMs during the initial setup.

  • After that, no continuous SIM check is performed.

  • Criminals exploited this by switching SIMs while keeping apps active.

The government expects that continuous SIM verification will:

  • Strengthen user-device-number linkage

  • Reduce spam, impersonation, and fraudulent accounts

  • Improve tracing and investigation of cybercrimes

  • Help curb messaging-based financial scams

Authorities also highlighted that strict SIM verification is already mandatory for UPI, banking, and proposed SEBI trading rules, making this move consistent with other financial and digital safety standards.

🔹 What Experts Are Saying

Supportive Experts

  • Say the measure boosts identity verification

  • Helps law enforcement track cyber offenders

  • Reduces fake profiles and spam accounts

Critical Experts

  • Claim criminals can still obtain SIMs using forged documents

  • Argue duplicate or fraudulent SIMs may bypass the system

  • Describe the rule as a partial remedy, not a full solution

Meanwhile, telecom industry representatives defend the government’s decision. They argue that in India, a mobile number serves as the strongest form of digital identification, and the new rules will enhance cybersecurity, accountability, and transparency.

Related posts