On February 27, speaking at the News18 Rising Bharat Summit in conversation with Nalin Mehta, Managing Editor of Moneycontrol, Telecom Minister Jyotiraditya Scindia made the government’s position unmistakably clear. “We have to ensure against cyberfraud and digital arrest; SIM binding has become the need of the day,” he said. “The SIM binding regulation stands and we hope all service providers will come on board.”
Behind that statement lies one of the most consequential telecom security shifts India has attempted in years, a rule that would require messaging apps to stay continuously tethered to a user’s physical SIM card.
Here is what that means, why it is being done, and why it is proving controversial.
What is SIM binding?
SIM binding requires messaging apps, such as WhatsApp, Telegram and Signal, to continuously verify that the SIM card used to register an account is still active and physically present in the device.
In simple terms: if the SIM is removed, swapped, deactivated or ported, the app session must automatically shut down.
Under a November 28, 2025 directive issued by the Department of Telecommunications (DoT), messaging platforms must build systems that routinely check the SIM’s identity markers, such as its IMSI (International Mobile Subscriber Identity), and terminate access if the SIM no longer matches the registered account.
Companion web sessions, like WhatsApp Web, must auto-logout every six hours.
Until now, most messaging apps allowed long-lived sessions. A user could log in once and continue using the app across devices, even if the original SIM was removed. That flexibility is precisely what the government wants to end.
Why is the government doing this?
The trigger is a surge in telecom-enabled fraud, especially 'digital arrest' scams and SIM-swap fraud.
In a SIM-swap attack, criminals convince a telecom operator to issue a replacement SIM for a victim’s number. Once they control the number, they receive SMS-based one-time passwords and gain access to banking, payments and messaging accounts.
In 'digital arrest' scams, fraudsters impersonate law enforcement officers over WhatsApp or similar platforms, threatening victims with fabricated charges and coercing payments. These schemes often rely on hijacked or fraudulently obtained phone numbers that remain active on messaging platforms even after SIM changes.
The loophole has been straightforward: an app session could remain active even after the SIM was removed or moved to another device, sometimes even abroad. Criminals exploited that persistence.
SIM binding attempts to close that gap. If the SIM changes, the session ends. No SIM, no messaging account access.
The government argues this restores traceability and accountability to telecom-linked identities.
The legal foundation
SIM binding is not a standalone idea. It sits atop a broader regulatory overhaul.
The Telecommunications Act, 2023, partially enforced from June 2024, expanded the government’s authority over telecom security. It capped SIM ownership at nine per individual and strengthened emergency and cybersecurity provisions.
In October 2025, the DoT amended the Telecom Cyber Security (TCS) Rules. These amendments were introduced:
Violations could invite penalties under the new Act.
How is this different from earlier SIM rules?
India has experimented with various telecom safeguards before.
In 2018, the Supreme Court struck down mandatory SIM–Aadhaar linking, ruling that forcing citizens to link mobile numbers with biometric IDs violated privacy and lacked a clear legal basis.
SIM binding is different. It does not mandate Aadhaar linkage. It does not introduce new identity verification. Instead, it enforces continuous linkage between an existing registered SIM and an app session.
Other measures already in place include:
How does SIM binding compare with other anti-fraud tools?
Many anti-fraud strategies focus on identity at the time of SIM issuance. SIM binding focuses on what happens after that.
Other approaches include:
Industry reaction: Support and concern
Telecom operators have largely supported the move.
The Cellular Operators Association of India (COAI) described it as a first-of-its-kind measure ensuring accountability and traceability. Major telecom companies publicly endorsed the policy, framing it as essential to national security and fraud prevention.
Technology companies have been more cautious.
The Broadband India Forum, which represents large technology platforms, has asked the government to pause implementation and hold broader consultations. Concerns include:
Whether the rules exceed statutory authority
Practical challenges
Several real-world questions remain.
What happens if a user legitimately changes devices?
What about people living abroad who rely on Indian numbers?
Will web and desktop sessions become cumbersome with six-hour logouts?
The government has indicated that as long as the SIM remains active, foreign access should not be affected. But technical clarity will matter.
There are also liability questions. If a SIM-bound account sends fraudulent messages, does that increase responsibility for the SIM holder? Legal interpretation may evolve as cases emerge.
On privacy, critics argue that deeper SIM integration could create surveillance risks. The government counters that SIMs are already registered through KYC; SIM binding does not create new identity databases.
Is India alone in this?
Most countries regulate SIM registration, not messaging app sessions.
Many European Union countries require ID verification for prepaid SIMs. Singapore has tightened SIM sale verification rules and criminalized SIM misuse. The United Kingdom is moving against SIM farms, devices that house multiple SIM cards for bulk scam messaging.
But none require messaging apps to continuously verify SIM presence during operation.
India’s approach is therefore unusual, possibly the first large-scale attempt to bind general-purpose messaging platforms to telecom hardware at runtime.
As of late February 2026, messaging platforms were approaching the compliance deadline. Regulators are expected to seek compliance reports by the end of March.
Short-term implementation may be uneven. Technical friction is likely.
Medium-term questions may involve legal refinements and possible clarifications under telecom cybersecurity rules.
Long-term, SIM binding could become part of a broader architecture: number validation systems, stronger SIM issuance controls, device tracking, and possibly voluntary identity integrations that comply with court rulings.
Whether SIM binding significantly reduces telecom-enabled fraud will depend on execution and whether criminals adapt faster than regulators.
For now, the policy direction is clear. As Scindia put it at the Rising Bharat Summit, the regulation 'stands.' The government views SIM binding not as a pilot but as a necessary recalibration of how telecom identity and digital communication intersect in an era of rising fraud.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
Find the best of Al News in one place, specially curated for you every weekend.
Stay on top of the latest tech trends and biggest startup news.
