With cybercrime and online fraud on the rise, the central government is taking strong steps to secure messaging apps like WhatsApp.
The misuse of these platforms is not only affecting ordinary users but also raising concerns about national security.
To address these threats, the Department of Telecommunications (DoT) issued a directive on November 28, 2025, requiring SIM-binding of messaging apps to users’ mobile numbers.
This means your messaging app account will be directly linked to your mobile number to prevent misuse and theft of sensitive information by foreign cybercriminals.
6-Hour Logout Rule for Web and Desktop
One of the key rules under this directive is that web and desktop versions of messaging apps must automatically log out every 6 hours.
After logging out, users must reconnect by scanning a QR code.
This rule, however, does not apply to mobile apps.
The government says the rule is meant to prevent long-session vulnerabilities that cybercriminals often exploit.
Frequent re-authentication ensures that the app is being used by the person who owns the SIM and device.
Similar auto-logout features are already used successfully by banking and UPI apps.
Messaging app companies have raised concerns that the 6-hour limit is inconvenient, especially for people working on desktops.
There are also complaints about high international roaming charges when using SIM-bound accounts abroad.
Government officials responded that this cost is minor compared to the safety and security benefits, and it is reasonable for travelers who already spend heavily on flights and hotels.
Possible Relaxation of Logout Timings
Sources indicate that the government may extend the logout limit for web and desktop apps to 12 or 18 hours, but it will not exceed 24 hours.
Another objection from apps was whether DoT has the authority to regulate them, as they fall under the IT Act.
The government clarified that since these apps operate through mobile networks and ISPs, the DoT has the right to issue directives.
Cyber fraud in India has caused losses of over ₹22,800 crore in 2024, with some cases leading to tragic outcomes like suicides.
This underlines the government’s stance that these measures are necessary to protect users and maintain trust in the digital system.
Background and Implementation
The move comes after repeated warnings from security agencies.
In September 2024, the Ministry of Home Affairs (MHA) formed a technical group including the DoT, Delhi Police, MeitY, IB, and TRAI.
This group recommended linking social media and OTT apps to mobile numbers.
In April 2025, MHA directed measures like SIM-binding and geo-fencing for apps like WhatsApp.
DoT field units, along with the Cellular Operators Association of India, also pushed for SIM-binding by August 2025 to reduce cross-border fraud and improve national security.
This SIM-binding and auto-logout initiative is part of the government’s effort to make digital platforms safer for users and to curb increasing cybercrime in the country.
