Ethical Hacking News
India has mandated that all providers of messaging apps work only with active SIM cards linked to users' phone numbers to curb phishing, scams, and cyber-fraud. The new rule comes as part of the Department of Telecommunications (DoT) efforts to combat rising fraud scams on messaging platforms. By implementing this measure, India aims to provide greater protection for its citizens against SIM-based phishing and other types of cyber-fraud.
The Indian government has mandated that all messaging app providers work only with active SIM cards linked to users' phone numbers. The new rule aims to curb phishing, scams, and cyber-fraud by preventing the misuse of telecom identifiers. India has introduced a new rule requiring all messaging apps to comply within 90 days, with measures including auto-logout of web sessions and periodic logouts. The rule aims to close a security gap exploited for large-scale, cross-border fraud and curb identifier misuse.
In a move aimed at combating the rising tide of fraud scams on messaging apps, India has mandated that all providers of such services work only with active SIM cards linked to users' phone numbers. This new rule, announced by the Department of Telecommunications (DoT), aims to curb phishing, scams, and cyber-fraud by preventing the misuse of telecom identifiers.
According to the DoT, this feature is being misused to commit cyber-frauds especially from operating outside the country. The agency has observed that some messaging apps allow users to consume their services without having an active SIM card within the device where the app is running. This can lead to fraudsters controlling victims' accounts from distant locations without needing the original device or SIM, making it difficult to trace and take down.
To address this security gap, the DoT has introduced a new rule that requires all messaging apps, including WhatsApp, Telegram, Signal, Snapchat, and others that rely on Indian mobile numbers as user identifiers, to comply with the new SIM-binding rules within 90 days. The measure also aims to close a security gap exploited for large-scale, cross-border fraud.
Under this new rule, web sessions must auto-logout within six hours, while apps have 90 days to implement and 120 days to report. This mandatory SIM-device binding and periodic logouts tie every account and web session to a live, KYC-verified SIM, improving traceability in phishing, digital arrest, loan, and investment scams.
The rule does not affect users roaming with their SIMs, however. With cyber-fraud losses topping ₹22,800 crore in 2024, these Telecom Cyber Security measures aim to curb identifier misuse and restore trust in the messaging apps ecosystem.
Similar device-binding practices used in banking are now extended to communication apps heavily abused in cyber fraud. This move is seen as a significant step towards curbing identity theft and other forms of cyber-fraud on messaging apps, and comes at a time when Indian consumers are increasingly vulnerable to online scams.
The new rule will require all messaging app providers to implement the necessary security measures to prevent SIM-based phishing and other types of cyber-fraud. This includes providing users with regular updates about their account status and ensuring that all user data is stored securely, in accordance with Indian regulations.
India's decision to mandate SIM-linked messaging apps comes amid growing concerns over the increasing number of cyber-fraud cases on messaging platforms. As a result, security experts have been advocating for stricter regulations on these platforms to prevent identity theft and other forms of cyber-criminal activity.
With the implementation of this new rule, Indian consumers can expect greater protection against SIM-based phishing and other types of cyber-fraud on messaging apps. While there are still challenges ahead in terms of implementing this new rule, India's efforts to combat rising fraud scams on messaging apps will help protect users' identity and prevent further losses.
Related Information:
https://www.ethicalhackingnews.com/articles/India-Mandates-SIM-Linked-Messaging-Apps-to-Combat-Rising-Fraud-Scams-ehn.shtml
https://securityaffairs.com/185265/laws-and-regulations/india-mandates-sim-linked-messaging-apps-to-fight-rising-fraud.html
Published: Wed Dec 3 04:12:57 2025 by llama3.2 3B Q4_K_M
