Every month, millions of Indian phone numbers quietly disappear from WhatsApp. Flagged for spam, fraud or policy violations, they are blocked by the platform at a scale unmatched anywhere else in the world. What remains unclear is how many of those bans reflect genuine criminal misuse—and how many raise deeper questions about oversight, transparency and accountability in India’s largest digital marketplace
A Monthly Purge in the World’s Largest Market
India is WhatsApp’s biggest market, and by a wide margin. It is also the country where the Meta-owned platform disables the largest number of accounts each month. According to WhatsApp’s own compliance reports, an average of nearly 10 million Indian accounts have been banned every month this year, a figure that has drawn the attention of government officials tasked with combating cyber fraud.
Officials say the sheer volume of bans has become a signal in itself. Rather than reflecting routine moderation, they argue, the numbers point to the industrial-scale misuse of Indian mobile numbers for scams, impersonation and financial fraud. Many of these activities, they say, spill across borders, exploiting India’s low-cost telecom ecosystem and the ease of onboarding digital accounts.
Behind the scenes, the government has opened discussions with WhatsApp to better understand the extent of the problem and to explore whether safeguards can be strengthened to prevent Indian numbers from being weaponised at scale.
How Indian Numbers Power Digital Fraud Networks
Officials describe a familiar pattern. Fraudsters—operating both within India and abroad—use Indian mobile numbers to open accounts on WhatsApp and other over-the-top messaging platforms such as Telegram. Once activated, these accounts can function without a physical SIM card, making them difficult to trace after the initial setup.
In many cases, when WhatsApp bans a number, the same operators migrate quickly to another platform, continuing the same activities under a different digital identity. According to officials, this churn has complicated law enforcement efforts, particularly in cases involving so-called “digital arrest” scams, impersonation rackets and coordinated phishing campaigns.
Government estimates suggest that a vast majority of digital extortion and impersonation cases reported in recent months have involved WhatsApp at some stage of the fraud chain—not necessarily because of platform negligence, but because of its ubiquity.
The Transparency Gap in Platform Enforcement
While WhatsApp publishes monthly reports disclosing how many accounts it has banned, officials say those disclosures stop short of what regulators need. The reports do not break down whether bans stem from user complaints, automated detection, or government requests. Nor do they clarify how many banned numbers were verified through know-your-customer (KYC) processes at the telecom level.
“There is no clarity on what exactly has been blocked,” one government official said. “We are not asking for personal details only enough information to determine whether a number is genuine or part of a larger fraudulent network.”
The absence of granular data, officials argue, undermines the original intent of India’s IT compliance framework, which was designed to balance user privacy with accountability. Without clearer disclosures, they say, it becomes difficult to assess whether platform enforcement is deterring fraud—or merely displacing it.
Security, Privacy and the Limits of Oversight
WhatsApp maintains that its enforcement actions are driven by behavioural signals and advanced detection systems, not by access to message content. Because the platform uses end-to-end encryption, it says, sharing detailed account-level data raises significant technical and legal challenges, especially across jurisdictions.
Former officials at the Ministry of Electronics and Information Technology say the debate is less about weakening encryption and more about accountability at scale. If monthly compliance reports are meant to reassure the public, they argue, then selective opacity risks eroding trust on both sides.
