Cyber security rules: DoT withdraws duplicate notification; original telecom security amendments stay in force
The clarification came after the same TCS amendment notification was inadvertently republished on October 29 in place of a different rule meant for public consultation.
The error was rescinded through notification GSR 863(E) on November 25, PTI reported.“This error now stands rectified… and this rescindment in no way invalidates the original amendment to TCS Rule that brought it into effect in the first place,” the DoT said in a statement.Cyber fraud crackdown at core of amended rulesThe amended TCS framework targets rising cyber vulnerabilities stemming from the deep integration of telecom identifiers — mobile numbers, devices, and other telecom resources — into digital services such as banking, e-commerce and e-governance.A key measure is the creation of a Mobile Number Validation (MNV) platform aimed at curbing the surge in mule accounts and identity fraud.
The decentralised, privacy-compliant mechanism will allow service providers to verify whether a mobile number genuinely belongs to the person whose credentials are on record, strengthening trust in digital transactions.The updated rules also tighten scrutiny of the booming second-hand device market.
Entities dealing in resale or refurbished devices must scrub every handset’s IMEI against a centralised blacklist before resale — a move intended to counter the circulation of cloned, stolen or blacklisted phones and protect consumers from legal exposure.Stronger data-sharing norms to track telecom-linked fraudUnder the amended TCS rules, banks, e-commerce platforms and other telecom identifier user entities may be required to share relevant telecom-identifier data with the government under regulated conditions.
The DoT said this is aimed at improving traceability, accountability and coordination in combating telecom-enabled cyber fraud, while maintaining compliance with data protection norms.According to the department, the amendments collectively seek to “safeguard India’s digital ecosystem against telecom-enabled frauds, strengthen device traceability, and ensure responsible use of telecom identifiers.” The TCS Amendment Rules, 2025, it added, mark a “decisive step” toward a more resilient and future-ready telecom cyber security framework.
