&w=1200&q=75)
Ethical Hacker Exposes Vulnerabilities in CBSE's On-Screen Marking System
Ethical Hacker Who Exposed CBSE OSM System, Claims Early Warnings Were Ignored | Exclusive
Image: Times Now News
Nisarga Adhikary, a 19-year-old ethical hacker, claims to have identified over 45 security vulnerabilities in the CBSE's On-Screen Marking (OSM) system shortly after its launch. Despite reporting these issues to CERT-In in February, many vulnerabilities reportedly remain unaddressed, raising concerns about data security and student privacy.
- 01Nisarga Adhikary reported vulnerabilities on February 26 or 27, 2023, shortly after the OSM system's launch.
- 02He claims to have accessed sensitive data, including personal information of evaluators and millions of records.
- 03Adhikary alleges that he could access scanned answer sheets of many students through vulnerabilities in the system.
- 04CBSE acknowledged the vulnerabilities but stated that they have been contained and a security review is ongoing.
- 05Adhikary has not been contacted by CBSE since reporting the issues, urging better communication with cybersecurity experts.
Advertisement
In-Article Ad
In an exclusive interview, 19-year-old ethical hacker Nisarga Adhikary revealed that he identified over 45 security vulnerabilities in the Central Board of Secondary Education's (CBSE) On-Screen Marking (OSM) system shortly after its launch on February 25, 2023. He reported these vulnerabilities to the Indian Computer Emergency Response Team (CERT-In) on February 26 or 27, claiming that while one issue was addressed, many others remained unresolved for months. Adhikary described the vulnerabilities as serious, likening them to an unlocked door with a key in plain sight. He alleged that he accessed sensitive information, including names, phone numbers, and even a database with 9.3 million records. Notably, he claimed to have accessed the cloud storage containing scanned answer sheets of numerous students. Despite CBSE's acknowledgment of the vulnerabilities and ongoing security review, Adhikary criticized the board for not contacting him directly. His claims raise significant concerns about data security and the effectiveness of the measures taken by CBSE to protect sensitive information.
Advertisement
In-Article Ad
The security vulnerabilities could potentially expose personal information of students and evaluators, leading to privacy breaches.
Advertisement
In-Article Ad
Reader Poll
Do you trust CBSE to secure student data effectively?
Connecting to poll...
More about Central Board of Secondary Education
Read the original article
Visit the source for the complete story.