The Ahmedabad Cyber Crime Police, in close coordination with the National Testing Agency (NTA), have arrested a 19-year-old BSc student, Navinkumar Shankar Prasad Yadav, from Gaya, Bihar, for executing a targeted digital heist on the official NEET-UG 2026 candidate portal. The suspect compiled a database of student application numbers and successfully breached nearly 150 of the 350 accounts he targeted by exploiting weak, default, or easily guessable passwords. Once inside, Yadav systematically altered the registered banking profiles to divert exam fee refunds amounting to ₹1,700 per candidate directly into bank accounts under his own control.
The fraud was detected through automated anomaly tracking flagged by the NTA’s Chief Information Security Officer, leading to Yadav’s arrest under the Bharatiya Nyaya Sanhita (BNS) and the IT Act. In response, the NTA has integrated strict two-factor authentication (2FA) mechanisms, including mobile and Aadhaar-based OTPs, to secure individual candidate profiles ahead of the upcoming re-examination.
Exploiting Digital Laxity: The Anatomy of the Hack
The security breach came to light after a worried parent lodged a formal complaint with the Ahmedabad Cyber Crime Branch in Gujarat. The parent reported that her daughter’s NEET application number and password had been unlawfully accessed and that the registered bank account details designated to receive her official exam refund had been altered without her knowledge or consent. Cyber cell investigators quickly discovered that this was not an isolated system glitch, but a calculated, wide-ranging exploit targeting a vulnerable subset of national medical aspirants.
Crucially, Navinkumar Yadav did not infiltrate the core, centralised database servers of the National Testing Agency. Instead, his strategy relied on a much more common vulnerability: poor password hygiene by individual users. Armed with a list of candidate application numbers, Yadav initiated programmatic trial-and-error attempts known technically as a brute-force attack to guess user passwords.
The strategy yielded alarming results because roughly 150 candidates had protected their accounts with incredibly weak credentials, such as their own dates of birth, sequential numbers, or their mobile phone digits. Once inside these profiles, Yadav identified students who were eligible for refunds, manually removed their legitimate family bank details, and substituted them with his own banking information to intercept the financial transactions.
Calculated Timing Amid Systemic Stress
The timing of this digital heist was deeply predatory. Following major disruptions that led to the cancellation of the primary NEET-UG 2026 exam due to paper leak controversies, the NTA initiated an unprecedented process to quickly refund examination fees to more than 2.2 million affected aspirants. The agency aimed to return standard fee amounts typically around ₹1,700 per eligible candidate directly to families as fast as possible.
Yadav sought to capitalise on this massive, automated payout phase. By altering the profile details beforehand, he ensured that when the automated NTA financial system triggered the refund processing, the funds would bypass the families of the medical aspirants entirely and land squarely in his personal accounts.
Coordinated Action and the Security Overhaul
The fraudulent operation was cut short due to real-time security tracking mechanisms built into the backend of the NEET portal. The NTA’s Chief Information Security Officer (CISO) noticed highly repetitive and centralized IP traffic patterns performing rapid, automated bank account profile modifications across multiple distinct student accounts. The NTA immediately extracted these digital audit logs and shared the footprint data with cyber cell investigators in Gujarat. Through a combination of digital forensics, network tracing, and tracking the destination bank accounts, authorities mapped the origin of the hack to Bihar. An Ahmedabad police team was dispatched to Gaya, where they located and arrested Yadav.
During a joint press conference, the Joint Director of the NTA, Akash Jain, and the Ahmedabad Joint Commissioner of Police (Crime), Sharad Singhal, emphasized that this investigation was critical to ensure honest students do not feel cheated by outside elements. To address the portal’s initial lack of secondary verification, the NTA has completely redesigned the candidate login security architecture. The portal has now formally implemented mandatory two-factor authentication (2FA). Moving forward, any critical profile modifications especially changes related to banking details, contact numbers, or personal credentials will strictly require one-time password (OTP) verification sent to the candidate’s registered mobile number, alongside ongoing efforts to integrate Aadhaar-based OTP verification.
The Logical Indian’s Perspective
This incident exposes a deeply unsettling truth: at a time when medical aspirants are already navigating the immense stress of cancelled exams and preparation anxieties, they must also face predatory digital vultures. While we commend the swift, coordinated response of the Ahmedabad Cyber Crime Police and the NTA to stop this fraud, we must reflect on how easily our youth can fall through the cracks of both cyber literacy and moral guidance. A 19-year-old college student choosing to use his technical aptitude to rob his peers of their hard-earned money points to a collective failure in how we teach digital ethics.
Technology must be harnessed to uplift, support, and connect us, not to exploit vulnerabilities. True security is built on a foundation of mutual empathy, responsible citizenship, and robust systems that protect the weak. We urge all students and parents to treat digital hygiene as an absolute priority to safeguard their futures.
#Gujarat: The Ahmedabad Cyber Crime Branch arrests three persons from Rajasthan and Bihar for their alleged involvement in fraud and running scams related to the NEET exam.
— All India Radio News (@airnewsalerts) June 15, 2026
The Joint Commissioner of Police for Ahmedabad Crime Branch, Sharad Singhal, informed the media that two… pic.twitter.com/90kkvjMYMu
