Centre orders WhatsApp, Telegram, other apps to block access to user without active SIM cards; here’s why
Banking and UPI apps already enforce strict SIM verification to prevent unauthorized access.
The Indian government has issued a major directive that could change the way millions of people use popular messaging apps such as WhatsApp, Telegram, Signal, Snapchat, ShareChat, JioChat, Arattai and Josh. According to reports, the Department of Telecommunications (DoT) has asked these platforms to ensure that their services cannot be used unless the user has an active SIM card on their device.
The move comes under the new Telecommunications Cybersecurity Amendment Rules (2025), which brings app-based communications services under telecom-style regulation for the first time. Under the new rules, these apps, formally called Telecommunications Identifier User Entities (TIUEs), must ensure that the user’s SIM card remains permanently connected to the app for 90 days.
What about the web version?
For people using these platforms in their web browsers, the government has added another layer of security. Apps will now need to automatically log users out every six hours and ask them to log in again via a QR code.
Reason behind the move
DoT says this system will make it harder for criminals to misuse these services remotely as each session must be linked to an active and verified SIM, as per reports. Officials say the rule aims to close a major loophole in how communications apps verify users. Currently, most apps verify the mobile number only once during installation.
After that, the app continues to work even if the SIM is removed or disabled. According to reports, the Cellular Operators Association of India (COAI) highlighted that this behavior allows applications to run independently of SIM cards, which creates opportunities for abuse.
Cybercriminals, including those operating from outside India, are known to exploit this loophole. They can continue to use these apps even after changing or deactivating SIM cards, making it extremely difficult for authorities to track down fraud through call logs, location logs or telecom data.
How will this step be useful?
COAI said making SIM binding mandatory will ensure a reliable connection between the user, number and device, which can help reduce spam, fraudulent calls and financial scams.
In banking, active SIM rules already exist in UPI
While banking and UPI apps require stringent SIM authentication to prevent unauthorized access, SEBI has suggested linking SIM cards to business accounts and using facial recognition for greater security.
