

The Ministry of Electronics and Information Technology (MeitY) has officially issued a formal notice to Meta, executing a sharp regulatory intervention over concerns that WhatsApp’s newly proposed “User ID" system could be heavily exploited by cybercriminals, sources have told CNN-News18. Moving beyond preliminary evaluations, the central government has directed the tech giant to furnish a comprehensive, detailed explanation of the upcoming feature within three days. Crucially, the directive strictly bars Meta from rolling out the username system in India until the formal consultation process is fully concluded.
The enforcement action underscores deep institutional displeasure within New Delhi, where senior officials have drawn sharp parallels to Telegram. The platform has faced severe regulatory heat and temporary operational blocks in India due to widespread anonymity-driven fraud, paper leaks, and unmonitored channels.
The government’s primary anxiety is that by severing the visible link between a WhatsApp account and a registered mobile number, Meta will inadvertently replicate Telegram’s structural vulnerabilities. Security agencies warn that this shift could drastically simplify the execution of sophisticated financial scams, lower the barrier for impersonation campaigns, and allow bad actors to seamlessly evade law enforcement tracking.
Under India’s current legal architecture, including the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, social media intermediaries are bound by strict traceability obligations to curb unlawful activities. WhatsApp has traditionally relied on the user’s mobile number as its operational anchor for accountability. Regulatory bodies fear that transitioning to custom usernames will severely hamper active cybercrime investigations, stall the filing of First Information Reports (FIRs), and slow down the processing of emergency complaints routed through the National Cyber Crime Reporting Portal.
Telecommunications officials have specifically flagged that masking phone numbers could blind local investigators, making it nearly impossible to determine whether an anonymous perpetrator is operating domestically or overseas.
The timing of this strict three-day ultimatum coincides with a broader institutional crackdown on Big Tech operations across the country. It follows landmark observations by the Supreme Court regarding user data privacy, alongside hefty anti-competitive penalties recently levied by the Competition Commission of India against Meta’s data-sharing structures. By putting a hard pause on the roll-out, MeitY is demanding a watertight blueprint of how Meta intends to balance user privacy with automated fraud detection and real-time cooperation with local law enforcement. Meta, which recently defended the feature as an essential privacy upgrade with built-in safeguards to protect high-profile handles, must now completely satisfy Indian regulators before a single local username can go live.