Overview
- On Sunday, May 31, ethical hacker Nisarga Adhikary said a misconfigured CBSE-linked Amazon Web Services bucket let anyone list and download scanned answer booklets and question papers, which he said included 2026 files.
- The Central Board of Secondary Education replied that the portal in question was a test environment with sample data and that there is no reported breach of its live On-Screen Marking evaluation system.
- Class 12 student Sarthak Sidhant publicly supported Nisarga’s claims and said CERT-In had acknowledged the reported vulnerabilities, but no independent forensic report has been made public to confirm a live-system compromise.
- The allegation follows earlier student complaints about blurred pages, missing content and marking glitches in the OSM digital evaluation rollout and coincides with more than 4 lakh students seeking their answer scripts for re-evaluation starting June 1.
- The row has renewed scrutiny of procurement after claims that tender changes favoured Hyderabad-based Coempt Eduteck and has prompted calls for independent security audits, forensic checks and clearer oversight before re-evaluation proceeds.