Govt sets 90-day deadline for WhatsApp, Telegram, and Arattai to enforce SIM-device binding against cyber fraud

The primary objective of the new rules is to close cybersecurity loopholes. Officials indicate that some platforms currently permit mobile number-based login even when the corresponding SIM card is not present in the device

By Storyboard18| Dec 1, 2025 9:12 AM

Govt sets 90-day deadline for WhatsApp, Telegram, and Arattai to enforce SIM-device binding against cyber fraud

This directive was issued by the Department of Telecommunications (DoT) under the new Telecommunication Cybersecurity Amendment Rules, 2025. The move marks the first instance where app-based communication services will be regulated similarly to traditional telecom operators.

In a significant regulatory shift, the Indian government has directed major messaging and Over-The-Top (OTT) communication platforms, including WhatsApp, Telegram, Signal, Snapchat, JioChat, Arattai, ShareChat, and Josh, to strictly tie user access to active SIM cards.

All affected OTT communication platforms have a 90-day window to implement continuous SIM-to-device binding. This mandates that users must have an active SIM card in their device to access the platform's services.

The mandate also introduces several stringent compliance requirements:

Periodic Logouts: Web and app-based platforms must enforce periodic logouts, occurring at least once every six hours.

Re-authentication: Re-authentication will be handled via a QR-code-based system.

New Designation: These platforms are now designated as Telecommunication Identifier User Entities (TIUEs).

TIUEs must complete compliance within the 90-day period. A detailed compliance report must be submitted to the DoT within 120 days. Non-compliance could lead to action under the Telecommunications Act, 2023, the Telecom Cyber Security Rules, 2024 (as amended), and other applicable laws.

The primary objective of the new rules is to close cybersecurity loopholes. Officials indicate that some platforms currently permit mobile number-based login even when the corresponding SIM card is not present in the device. This loophole has reportedly been exploited to facilitate cross-border cyber fraud. The Cellular Operators Association of India (COAI) had previously advocated for mandatory SIM binding as a security measure.

Additionally, TIUEs will be required to utilize a Mobile Number Validation (MNV) Platform to verify users. They may also be instructed to suspend identifiers used to access services in sensitive cases, further strengthening regulatory oversight and security protocols.

Agency News

WPP defers global pay reviews to 2026 as Cindy Rose’s strategic overhaul gathers pace

With intensifying investor scrutiny and two profit warnings in three months, WPP’s leadership, with McKinsey’s backing, is now preparing for sweeping changes aimed at restoring growth momentum and reaffirming the network’s dominance in the global advertising landscape.

Brand Marketing

Simply Speaking: Build for others, last longer

How it Works

Tilaknagar Industries seals ₹3,442-cr deal for Imperial Blue; aims to build pan-India IMFL powerhouse

Brand Makers

Big FM names Ashit Kukian as its new CEO from December 2025

Ashit Kukian previously spent ten years as President and Chief Operating Officer at Radio City from 2005 to 2015, where he played a significant role in shaping the network’s programming and operational direction.

The combined company, with a pro forma combined revenue in excess of $25 billion, will trade under the OMC ticker symbol on the New York Stock Exchange.

Agency News

Industry on edge as new leadership for merged Omnicom–IPG set to be revealed today

Brand Makers

Ashish Chakravarty joins Garage Worldwide as Partner and Chief Creative Officer

Ashish Chakravarty stated that Garage Worldwide has the hunger and inventiveness of a new-age agency and described it as an environment where bold ideas can thrive.

How it Works