India Mandates Preloading of Cybersecurity App on All New Smartphones Despite Potential Conflict with Apple

India stands as one of the world's largest telephone markets, with its government now taking bold steps in cybersecurity measures.

The Indian telecoms ministry has issued a confidential directive requiring all smartphone manufacturers to preload a state-owned cybersecurity application on new devices, according to a government order. This mandate is anticipated to create friction with Apple, which traditionally resists such governmental requirements.

With over 1.2 billion subscribers, India represents a massive telecommunications market. Government statistics reveal that the app in question, launched in January, has facilitated the recovery of more than 700,000 lost phones, including 50,000 in October alone.

Apple, which previously encountered challenges with the telecoms regulator regarding the development of a government anti-spam mobile application, joins other major manufacturers like Samsung, Vivo, Oppo, and Xiaomi in being subject to this new requirement.

The directive, dated November 28 and viewed by Reuters, grants major smartphone companies a 90-day window to ensure that the government's Sanchar Saathi application is pre-installed on new mobile devices, with stipulations preventing users from removing it.

For devices already in distribution channels, manufacturers must deploy the application via software updates.

While Apple typically pre-installs its proprietary applications on devices, its internal policies prohibit pre-installation of any government or third-party applications before smartphone sales, according to a source with direct knowledge of the situation.

Apple, Samsung, and Xiaomi did not respond to requests for comment. India's telecoms ministry likewise offered no response.

Two industry insiders, speaking anonymously, expressed concern about the lack of consultation with companies before the directive was issued.

In the order, the government emphasized that the application is crucial for combating "serious endangerment" of telecom cybersecurity from duplicate or spoofed IMEI numbers, which facilitate scams and network misuse.

The IMEI (International Mobile Equipment Identity), a unique 14- to 17-digit number assigned to each handset, is primarily used to terminate network access for devices reported stolen.

The government application enables users to report suspicious calls, verify IMEIs, and block stolen devices through a centralized registry.

With over 5 million downloads since its introduction, the application has helped block more than 3.7 million stolen or lost mobile phones, while also terminating over 30 million fraudulent connections.

The government maintains that it helps prevent cyber threats and assists in tracking and blocking lost or stolen phones, aiding police in device tracing while keeping counterfeits out of the black market.