Government Scrutinizes WhatsApp Username Feature Over Escalating Cybercrime Risks
DNI SUMMARY — KEY POINTS
- Meta has officially submitted its response to the Ministry of Electronics and Information Technology regarding safety concerns over the upcoming WhatsApp username feature.
- The Indian government has strictly directed WhatsApp to pause the implementation of this feature until formal consultations with regulatory authorities are successfully concluded.
- Officials fear the introduction of usernames will increase risks of online fraud, phishing attacks, and the growing threat of digital arrest scams.
- The government has also extended its regulatory scrutiny to other messaging platforms like Telegram and Signal to evaluate their existing username safety protocols.
- While Meta insists that protective layers are in place to prevent impersonation, the government maintains that the platform must prove full regulatory compliance.
The Ministry of Electronics and Information Technology has received a formal response from Meta regarding the planned introduction of a username feature on the popular messaging platform WhatsApp. This development follows a government directive that explicitly ordered the company to suspend any rollout of the functionality within India until a rigorous assessment of the potential risks is completed. The government remains deeply concerned that moving away from a strictly phone-number-based authentication system could provide new avenues for cybercriminals to target users through sophisticated scams.
Regulatory Oversight and Compliance
Regulatory Oversight and Compliance, The government has specifically pointed to the rising threat of digital arrest schemes and widespread phishing campaigns as primary reasons for its cautious stance. Under the Information Technology Act, messaging platforms are mandated to maintain strict due diligence to protect their user base from harm. Officials are currently reviewing the submission to determine if the proposed security measures are sufficient to mitigate the risk of mass impersonation, as the platform currently serves over 500 million users in its largest global market.
Meta has attempted to assuage these regulatory fears by clarifying that the username feature is not intended to replace phone numbers, which will remain a necessity for account registration. A company spokesperson stated that they have proactively reserved the names of public figures and government entities to prevent bad actors from claiming high-profile identities. Despite these assurances, the government is demanding a detailed technical breakdown of how these safeguards function in practice to prevent lookalike accounts and deceptive naming conventions from proliferating across the network.
The government has directed WhatsApp to pause the username feature rollout until it meets safety satisfaction requirements.
Wider Implications for Messaging
Wider Implications for Messaging, The regulatory pressure is not limited to WhatsApp alone, as the Centre has expanded its inquiry to include other platforms like Telegram and Signal. These services have long offered username-based communication, and authorities are now questioning whether those implementations meet the stringent safety requirements expected under current Indian laws. By probing these established features, the government is signaling a shift toward a more proactive, centralized oversight model for all digital intermediaries operating within the country to ensure national security.
The submission by Meta comes after the company secured a brief extension from its initial deadline to finalize its technical explanation. During the interim, a delegation from the company met with ministry officials to discuss the framework and address specific concerns regarding compliance. The ongoing review is a critical test of how significant social media intermediaries negotiate the balance between introducing global product features and adhering to localized regulatory demands designed to protect a vulnerable, rapidly digitizing population.
Industry Reactions to Regulations
Industry Reactions to Regulations, The scrutiny has already prompted some companies to adjust their operations, with Zoho-backed platform Arattai announcing it will disable its username feature to ensure total alignment with regulatory expectations. This decision highlights the potential impact on smaller, homegrown players who must navigate the evolving landscape of digital policy. Meanwhile, major industry stakeholders are watching the outcome of the WhatsApp review closely, as the final decision could set a definitive precedent for how global messaging services roll out identity features in India.
India is currently the largest market for WhatsApp with more than 500 million active users in the country.
Concerns regarding the misuse of personal data and the potential for cyber fraud remain the focal point of the current dialogue between the government and the tech giants. While proponents of the username feature argue that it offers greater privacy, the government insists that anonymity must not come at the expense of accountability or user safety. The IT Secretary has indicated that the government will continue to examine the issue thoroughly, emphasizing that no rollout can proceed until authorities are satisfied with the presented protections.
Future of Platform Governance
Future of Platform Governance, The outcome of this regulatory standoff will likely determine the pace of future product releases in the Indian market. As the government continues to weigh the risks of impersonation against the benefits of user convenience, Meta faces the challenge of demonstrating that its platform can adapt to specific local safety requirements. The final ruling on the matter will be a significant indicator of the regulatory climate, confirming that compliance with Indian law remains a non-negotiable prerequisite for all major social media entities.
KEY TAKEAWAYS
Authorities are concerned that usernames could facilitate phishing attacks and digital arrest scams against unsuspecting platform users.
Other messaging services like Telegram and Signal have also been issued notices regarding their existing username implementation protocols.


