WhatsApp Web May Auto-Logout Every 6 Hours in India – Here’s Why

Many people use WhatsApp Web on laptops and desktops for work. However, if you are using WhatsApp Web in India, you may face a sudden auto-logout. You don't need to worry about this, as it isn't a bug. Let's understand why this will happen.

Reason for WhatsApp Web Auto-Logout

The DoT recently issued new guidelines under the TCS (Telecommunications Cyber Security) Rules, 2024. In this amendment, the DoT has asked app-based communication service providers to secure their web services.

The service provider must ensure that the web service for a mobile messaging app logs out automatically at regular intervals. A single login session mustn't last more than 6 hours. Once the session expires, users should be allowed to re-link their devices via QR code. Service providers are provided with 90 days for the implementation and 120 days for report submission.

This step has been taken under the DoT's Sim-Binding guidelines. Apart from the web services, service providers will also have to update their app-based services. So, the app-based service must be continuously linked to the SIM card. Using the app without that specific active SIM will be impossible.

This amendment affects the following service providers:

• WhatsApp
• Telegram
• Snapchat
• Arattai
• ShareChat
• Josh
• JioChat
• Signal

Why These Guidelines Are Important

There was a security loophole that cybercriminals often used to attempt digital fraud. Accounts on such messaging apps were working even after removing the SIM card, which caused the following cybercrimes:

• Anonymous Scams
• Remote Digital Arrests
• Fraud Government Calls

Also, long-term web sessions allow cyberattackers to access accounts remotely. Such services also don't require a device or a SIM. One-time authentication may be a security threat for users of these platforms. Auto-Logout closes web sessions every 6 hours and can only be re-authenticated on the registered device with the active SIM of the registered number.

The Importance of Cybersecurity in Messaging App and Website Development

• Protection of Private Data: Messaging platforms store sensitive information, including users' chats, phone numbers, and personal identities. If mobile app or web developers don't implement security features, such details can be stolen and misused.
• Preventing Online Fraud: Security features such as multi-factor authentication, OTP verification, and spam detection help platforms block cyberattacks. This helps platforms avoid common forms of fraud, such as fake accounts, phishing links, and scam messages.

Prevent Service Downtime: Cyberattackers sometimes overload a platform to slow it down or make it stop working. DDoS protection, real-time monitoring, and strong server security help websites and apps work even during attacks.