The Central Board of Secondary Education (CBSE) has denied allegations that its newly introduced On-Screen Marking (OSM) system for Class 12 board examinations was “hacked”, after claims of vulnerabilities in a portal linked to the digital evaluation process went viral across social media platforms.
The controversy began when a teenage cybersecurity enthusiast alleged that he had identified serious flaws in a CBSE-linked portal, including weak authentication systems and the potential for examiner account access or mark manipulation.
As screenshots and discussions spread rapidly across X, Reddit, Telegram, and YouTube, students and parents raised concerns over the safety and credibility of the board’s digital evaluation process.
Responding to the claims, CBSE clarified that the URL being circulated online was merely a testing and review portal containing dummy data, not the live evaluation system used to assess answer sheets or store student records.
The board described reports of a breach as “misleading and factually incorrect”, adding that “strong safeguards” protect the actual evaluation platform.
However, the incident has intensified a wider debate around cybersecurity, transparency, and public trust in India’s rapidly digitising education system, especially as students had already reported issues such as mismatched answer sheets, blurred scans, and portal glitches during the rollout of OSM earlier this year.
Viral Claims Trigger Anxiety
The controversy erupted after online posts claimed that vulnerabilities had been discovered in a portal associated with CBSE’s OSM system, introduced this year for digital evaluation of Class 12 board answer sheets.
According to screenshots and posts circulated widely online, the alleged flaws included hardcoded credentials, client-side OTP validation, password reset manipulation, and the possibility of unauthorised access to examiner accounts. The claims gained traction quickly among students already frustrated by technical issues linked to the new evaluation process.
A teenage cybersecurity enthusiast, who claimed responsibility for identifying the vulnerabilities, said he had reported the issue months earlier to the Indian Computer Emergency Response Team (CERT-In) and other authorities but allegedly received no substantial response.
Soon, hashtags questioning the reliability of CBSE’s digital marking infrastructure began trending across student communities and discussion forums. YouTube commentary videos discussing “CBSE hacking”, “OSM failures”, and fears of marks being altered added to the growing anxiety.
CBSE, however, firmly rejected the allegations. In an official clarification issued on May 26, the board stated that the URL being shared online was “not the operational evaluation portal” but only an “internal testing and review platform” containing sample data.
“No student marks, answer books, or evaluation records were hosted on this portal,” the board said, adding that the actual live system operates through a separate secure infrastructure.
CBSE further asserted that “no vulnerabilities or breaches have been detected in the production environment” and maintained that the integrity of board examination evaluations remains fully protected.
The issue nevertheless sparked widespread concern because the OSM system handles one of the most sensitive aspects of India’s education system: board exam assessment.
For millions of students, board examination scores influence university admissions, scholarships, and future career opportunities. As a result, even the perception of a security lapse triggered panic among students and parents alike.
Digital Evaluation Under Scrutiny
The OSM controversy has also drawn attention to the broader challenges facing India’s transition towards digital education governance.
Introduced as part of CBSE’s modernisation efforts, the OSM system was designed to streamline answer-sheet evaluation by digitally scanning physical copies, enabling online assessment by examiners, electronically uploading marks, and integrating grievance redressal into a single digital framework.
CBSE had promoted the initiative as a step towards greater transparency, efficiency, and accountability in the examination process.
However, the rollout has faced criticism from students and parents even before the recent controversy. Several complaints surfaced during the post-result verification process, including blurred scanned answer sheets, incorrect uploads, portal crashes, missing pages, and payment glitches during re-evaluation requests.
One widely discussed case involved a Delhi student who alleged that the Physics answer sheet uploaded under his roll number did not belong to him. CBSE later acknowledged the error and uploaded the correct script, but the incident significantly deepened public scepticism regarding the reliability of the system.
Cybersecurity experts and digital rights advocates have also pointed out that even if the vulnerable portal was only a testing environment, publicly accessible weaknesses can still raise valid concerns. Experts note that insecure test environments may expose coding patterns, architectural designs, or security practices that attackers could potentially exploit.
This technical distinction between a “testing environment” and a “production system” became central to the debate, though many students and parents struggled to separate the two amid the flood of alarming online claims.
The incident has further revived discussions around responsible vulnerability disclosure practices in India and the responsiveness of institutions when independent researchers report security concerns.
Civil society groups and cybersecurity commentators have called for greater transparency, independent audits, and clearer communication protocols for public digital infrastructure, especially when it directly affects students and educational outcomes.
The Logical Indian’s Perspective
The CBSE OSM controversy highlights a difficult but important reality about India’s digital future: technological transformation cannot succeed without public trust. While CBSE has categorically denied any breach of its live evaluation system and clarified that no student data or marks were compromised, the public reaction reflects growing anxiety around the security and reliability of systems that shape young people’s futures.
Digital reforms in education have the potential to reduce errors, improve transparency, and make processes more accessible. However, when technical glitches, communication gaps, or unresolved concerns emerge, they can quickly erode confidence particularly in high-stakes systems like board examinations where even a small mistake can have life-changing consequences for students. Institutions introducing such reforms must therefore prioritise not only cybersecurity safeguards but also transparency, responsiveness, and empathy in addressing public concerns.
