"Username feature on WhatsApp may increase online fraud, phishing": Centre
New Delhi, July 1
The Centre has issued a notice to Meta regarding the roll-out of the "usernames" feature on WhatsApp in India, stating that it may increase the incidence of online fraud, phishing, and digital arrest scams.
The Centre expressed concern, saying that the "usernames" feature may enable "impersonation and identity spoofing," and asked Meta to furnish a detailed explanation within three days.
The notice stated, "It is felt that the feature may materially increase the incidence of online fraud, phishing, digital arrest scams and impersonation attacks, by enabling bad actors to solicit and message victims. Furthermore, this feature may facilitate impersonation and identity spoofing, including impersonation of individuals, public authorities, financial institutions, and government agencies, by permitting the adoption of usernames closely resembling those of genuine persons or institutions."
The Centre has asked Meta not to roll out the feature until satisfactory consultation with the government.
"Accordingly, you are directed to explain why regulatory action ought not to be initiated under the Information Technology Act, 2000 (IT Act), the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 (IT Rules, 2021) and other laws as may be applicable for launching a feature that may increase cybercrimes. You are directed to furnish a detailed explanation, supported by relevant documents, on this new feature, within three days of its receipt. You are also directed not to roll out this feature until the consultation on this point is achieved to the satisfaction of the Government," the notice read.
Meanwhile, Meta had said that a username is an optional unique identifier you can choose for your WhatsApp account. It starts with the @ symbol (for example, @Name123) and can be used by others to message or call a person, while keeping their phone number private. The username is different from the display name (the name that appears in your profile). The display name doesn't have to be unique, but the username does.
According to Meta, people who don't have the persons' number saved will see their username instead by default. This includes when they participate in group chats, message someone directly, or make calls on WhatsApp. Their username always appears with an @ symbol in front. This makes it easy for others to tell the difference between their username, their display name, and their phone number.
Meta said usernames are unique to each account. If the username a person wants is already taken, they will need to choose a different one. Certain usernames are held for businesses, governments, or public figures and cannot be claimed by others.
— ANI
Reader Comments
I actually like the username idea because it keeps my phone number private. But the Centre has a valid point. Already in my family WhatsApp group, we got a fake "bank manager" message last week. With usernames, anyone could create @SBI_CustomerService or @IncomeTaxDept and scam people. Meta needs to implement verification badges or something similar first.
Typical government overreaction 🥱. They should focus on catching actual scammers instead of blocking new features. Usernames could actually reduce SIM swap fraud since your number remains hidden. But I guess asking Meta to add two-factor authentication for username changes would be too sensible.
As someone who works in cybersecurity, I understand both sides. The username feature itself isn't dangerous—it's the lack of safeguards. In India, where WhatsApp is used for everything from grocery orders to bank OTPs, we need mandatory verification for usernames that match official entities. Meta should learn from how Twitter handles verified accounts.
Wait, so if I don't save someone's number, I'll see their username instead? That means if a scammer messages me with @PMOIndia or @MyBank, I might think it's legit. Bad idea without proper controls. The government should mandate that usernames can't impersonate government, banks, or public figures without verification. Common sense, Meta! 🙄
I'm tired of these scams. My mother got a "digital arrest" call last month and almost transferred money. If usernames make it easier for scammers to pretend to be officials,
We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.