Who is the 19-year-old hacker behind the latest CBSE security controversy?

A 19-year-old ethical hacker, Nisarga Adhikary, has reignited scrutiny over the Central Board of Secondary Education’s (CBSE) digital infrastructure after alleging that examination-related files were publicly accessible online. Adhikary, a Class 12 student from West Bengal, claimed a CBSE-linked cloud storage system was improperly configured, allowing unauthenticated access to scanned answer sheets, question papers, and other sensitive materials. His claims, supported by screenshots and videos shared online, have sparked concerns among students, parents, and educators about the security of digital examination data. The controversy follows ongoing criticism of CBSE’s On-Screen Marking (OSM) system, which has faced issues such as answer-sheet mix-ups, scanning errors, and technical glitches. Adhikary has previously reported vulnerabilities in CBSE-linked systems to authorities, including CERT-In, but this latest allegation has drawn widespread attention. CBSE has dismissed the claims, stating the exposed portal was a testing environment containing only sample data and not the actual OSM system used for evaluating board examination answer sheets. Despite CBSE’s denial, the incident has intensified debates about cybersecurity in large-scale public examination systems. Experts argue that while digital evaluation improves efficiency, it requires robust security measures, regular audits, and strict oversight to protect sensitive student data. With over 400,000 students currently accessing answer scripts during the re-evaluation process, questions about the reliability of CBSE’s digital infrastructure remain under close public scrutiny. Education Minister Dharmendra Pradhan has previously acknowledged discrepancies in the OSM system and assured corrective measures are being implemented. However, the latest allegations have further complicated CBSE’s efforts to address public trust in its digital evaluation processes. The board continues to maintain that its core evaluation system remains secure, though the controversy underscores the need for stronger safeguards in India’s educational technology infrastructure.