India to Introduce New Login Rules for WhatsApp, Telegram and Other Messaging Apps

NEW DELHI — The Indian government has announced new login regulations for popular messaging apps, including WhatsApp, Telegram, Signal, and Snapchat, in a major cybersecurity initiative. The rules, which will come into effect within the next three months, are aimed at combating cyber fraud carried out via app-based communication platforms.

According to a directive from the Department of Telecommunications (DoT), users will need to periodically re-verify their identities using QR code authentication or the SIM card originally linked to their messaging app. Devices without an active SIM card will no longer be allowed to maintain long-term login sessions.

The new policy responds to concerns over misuse of encrypted messaging platforms by cybercriminals, many of whom operate from outside India. Officials noted that apps were being exploited for phishing, financial scams, and impersonation schemes.

Under the updated rules:

• Desktop and laptop users will be automatically logged out if their device does not connect through an active mobile SIM within six hours.
• Smartphone users must periodically re-link their apps via QR code or SIM verification.
• Messaging app operators are required to report compliance within 120 days and implement features to prevent identity spoofing, account masking, and unauthorized multi-device logins.

Cybersecurity experts describe the move as one of India’s most significant regulatory interventions in digital communication, balancing user privacy with national security and fraud prevention. Telecom operators have also been instructed to monitor SIM usage to identify patterns indicative of high-risk activity.

The changes are expected to affect millions of Indian users who rely on messaging apps for personal and business communication, reshaping how digital identities are managed across the country.