Back

Massive Data Breach Exposes CBSE Answer Sheets of 20 Lakh Students

Severity: High (Score: 66.0)

Sources: Ground.News, Madhyamamonline, www.aninews.in, Thestatesman, www.devdiscourse.com

Published: 2026-05-31 · Updated: 2026-05-31

Keywords: congress, answer, alleged, cbse, sheet, massive, breach

Severity indicators: breach, massive breach

Summary

On May 31, 2026, Congress leader Jairam Ramesh reported that answer sheets of approximately 20 lakh (2 million) Class 12 students from the Central Board of Secondary Education (CBSE) were publicly accessible online, raising significant privacy and data security concerns. The breach is attributed to alleged negligence by COEMPT, the contractor responsible for digitizing and evaluating the exams. Ramesh criticized the quality of the leaked documents, which showed signs of poor scanning, suggesting they may have been captured with mobile phones instead of professional equipment. Allegations also surfaced regarding an improperly configured storage bucket that allowed public access to sensitive files. The Congress party has called for the resignation of Education Minister Dharmendra Pradhan and demanded a Central Bureau of Investigation (CBI) probe into the incident. CBSE has acknowledged the vulnerabilities and stated that cybersecurity experts are working to secure the system. The incident reflects broader issues of data protection and management within educational institutions. Key Points: • Approximately 20 lakh CBSE Class 12 answer sheets were exposed online. • The breach is linked to negligence by COEMPT, the contractor for digitization. • Congress demands a CBI investigation and the resignation of Education Minister Dharmendra Pradhan.

Detailed Analysis

**Impact** Approximately 2 million Class 12 students under the Central Board of Secondary Education (CBSE) in India have had their answer sheets exposed publicly, compromising their privacy. The breach affects the education sector nationwide, impacting students' sensitive examination data. The exposure has operational consequences for CBSE, including reputational damage and potential legal scrutiny. The data at risk includes scanned answer booklets and possibly related examination materials. **Technical Details** The breach appears linked to vulnerabilities in the OnMark portal managed by COEMPT, the contractor responsible for digitisation and evaluation. Allegations include an improperly configured AWS storage bucket allowing public access to sensitive files. The scanned documents show signs of low-quality capture, possibly using mobile phones instead of mandated robotic scanners, indicating procedural lapses. No specific malware, CVEs, or detailed attack vectors were disclosed in the available information. **Recommended Response** Immediate review and reconfiguration of cloud storage permissions, particularly AWS buckets, to restrict public access is critical. Deploy monitoring for unauthorized access attempts and audit all data handling processes related to examination materials. Engage cybersecurity experts to conduct a comprehensive vulnerability assessment of the OnMark portal and associated infrastructure. Maintain communication channels with ethical hackers and the public to identify and remediate any further security gaps.

Source articles (5)

  • Congress alleges massive CBSE answer sheet data breach — Madhyamamonline · 2026-05-31
    The Indian National Congress on Sunday alleged that the answer sheets of nearly two million Class 12 students under the Central Board of Secondary Education had been exposed online, raising serious co…
  • Congress raises alarm over alleged CBSE answer sheet leak, questions evaluation contractor — Thestatesman · 2026-05-31
    Congress leader Jairam Ramesh on Sunday alleged that the answer sheets of nearly two million CBSE Class 12 students had been exposed in the public domain, describing the incident as a massive breach o…
  • Congress Highlights Massive Data Breach Involving CBSE Exam Papers — Ground.News · 2026-05-31
    Rahul Gandhi on CBSE Issue: Re-posting a user's post, Rahul Gandhi has again targeted the Central Government and Education Minister Dharmendra Pradhan regarding the CBSE issue. Users have shared pictu…
  • Massive data leak that has put privacy of 20 lakh students at risk...": Congress slams government over post-result problems faced by CBSE students — www.aninews.in · 2026-05-31
    New Delhi [India], May 31 (ANI): Congress leader Jairam Ramesh on Sunday alleged that it has come to light that the answer booklets of 20 lakh Class 12 students of CBSE were available in the public do…
  • Congress Highlights Massive Data Breach Involving CBSE Exam Papers — www.devdiscourse.com · 2026-05-31
    The Congress has raised alarms over a substantial data breach involving the answer sheets of two million Grade 12 students under the Central Board of Secondary Education (CBSE). This exposure is claim…

Timeline

  • 2026-05-31 — Congress reveals massive data breach of CBSE answer sheets: Jairam Ramesh announced that answer sheets of 20 lakh students were publicly accessible, highlighting severe lapses in data security.
  • 2026-05-31 — CBSE acknowledges vulnerabilities in OnMark portal: CBSE stated that it is monitoring vulnerabilities flagged in its service provider's portal and has deployed cybersecurity experts to address the issues.
  • 2026-05-31 — Congress demands CBI probe and minister's resignation: The Congress party called for a CBI investigation into the breach and the resignation of Education Minister Dharmendra Pradhan due to alleged incompetence.

Related entities

  • Data Breach (Attack Type)
  • CBSE (Company)
  • Central Board Of Secondary Education (Company)
  • Education (Company)
  • AWS (Company)
  • X (Company)
  • India (Country)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
  • CWE-862 - Missing Authorization (Cwe)
  • OnMark Portal (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed