On November 28, 2025, the Indian government directed messaging apps like WhatsApp, Telegram, and Signal to operate only when the SIM card used to register the service is inserted in the device. The order also demands web-based chat sessions log out every six hours. This move, effective February 2026, aims to combat cyber frauds using these platforms from outside India. The Department of Telecommunications (DoT) said, “SIMs used outside the phone where WhatsApp has been registered were being misused from outside the country to commit cyber-frauds.” This 'SIM binding' will stop apps from working if the SIM is removed, making fraudsters easier to track. Government officials are frustrated because current systems let users verify their number once and then use the app on many devices anonymously. An industry source called the new rules “problematic” and said no consultation or feasibility study was done before they were issued. They also questioned whether the rules could truly stop frauds. Traditionally, the DoT handled telecom transmission but rarely intervened in app content. This order shows a new approach due to the growing overlap of telecom and internet services. Earlier in 2025, the DoT amended Cyber Security Rules to include firms using mobile numbers to ID users, affecting many industries. The Internet and Mobile Association of India, representing Meta and others, criticized the rules as an “overreach” with broad impacts across digital businesses. Meanwhile, telecom operators have long pushed the DoT to tackle frauds on apps like WhatsApp, as existing anti-spam laws don’t address these issues. No immediate comment came from WhatsApp or the DoT after queries were sent outside office hours.