Ethical Hacking News
India has taken a tough stance against messaging app fraud by requiring all communication service providers to link users' mobile numbers with their SIM cards. This move is aimed at combating phishing, scams, and cyber fraud, which have become increasingly prevalent in India.
India's Department of Telecommunications has ordered all communication service providers to link users' mobile numbers with their SIM cards on messaging apps. The move aims to combat phishing, scams, and cyber fraud by making it harder for bad actors to control victim accounts from distant locations. All messaging apps, including WhatsApp, Telegram, and Signal, will need to update their systems to comply with the new directive within a 90-day timeframe. The new restrictions ensure that every active account on the messaging app and its web sessions is tied to a Know Your Customer (KYC)-verified SIM, making it easier for authorities to trace numbers used in scams.
India's Department of Telecommunications (DoT) has taken a firm stance against the misuse of messaging apps, ordering all communication service providers to ensure that their platforms cannot be used without an active SIM card linked to the user's mobile number. This move is aimed at combating the growing problem of phishing, scams, and cyber fraud, which have become increasingly prevalent in India.
The DoT has issued a directive requiring app-based communication service providers to comply with the amendment to the Telecommunications (Telecom Cyber Security) Rules, 2024, within a 90-day timeframe. This means that all messaging apps, including WhatsApp, Telegram, Snapchat, Arattai, Sharechat, Josh, JioChat, and Signal, will need to update their systems to link users' mobile numbers with their SIM cards.
The Indian government has cited the issue of anonymous scams, remote 'digital arrest' frauds, and government-impersonation calls using Indian numbers as reasons for implementing these new security measures. According to the DoT, the current system allows bad actors to easily control victims' accounts from distant locations without needing the original device or SIM, making it difficult for authorities to trace and take down such scams.
Under the new directive, app-based communication services will be required to continuously link their users with the SIM card installed in the user's device. This means that users will no longer be able to access messaging apps without an active SIM card linked to their mobile number. Additionally, the DoT has mandated periodic logging out of web service instances every six hours and requiring users to re-link their devices via QR codes if necessary.
The Indian government believes that these measures will reduce the scope for account takeover attacks, remote control misuse, and mule account operations. Furthermore, the repeated re-linking process introduces additional friction in the process, necessitating that threat actors prove they are in control again and again.
The DoT also notes that the new restrictions ensure that every active account on the messaging app and its web sessions is tied to a Know Your Customer (KYC)-verified SIM. This will enable authorities to trace numbers used in phishing, investment, digital arrest, and loan scams with greater ease.
It's worth noting that the SIM-binding and automatic session logout rules are already applicable to banking and instant payment apps that use India's Unified Payments Interface (UPI) system. The latest directions extend this policy to also cover messaging apps like WhatsApp and Signal.
While some messaging apps have not responded to requests for comment, it is clear that the Indian government is taking a proactive approach to combating cyber fraud in the country. By implementing these new security measures, India aims to protect its citizens from the growing threat of online scams and phishing attacks.
India has taken a tough stance against messaging app fraud by requiring all communication service providers to link users' mobile numbers with their SIM cards. This move is aimed at combating phishing, scams, and cyber fraud, which have become increasingly prevalent in India.
Related Information:
https://www.ethicalhackingnews.com/articles/The-Indian-Government-Cracks-Down-on-Messaging-App-Fraud-A-New-Era-of-SIM-Based-Security-ehn.shtml
https://thehackernews.com/2025/12/india-orders-messaging-apps-to-work.html
https://www.onmanorama.com/news/india/2025/12/02/sim-binding-india-messaging-apps-sanchar-saathi-explained.html
Published: Tue Dec 2 12:59:24 2025 by llama3.2 3B Q4_K_M
