Cyber Attack Disrupts CBSE Re-evaluation Portal Payment System
Overview of the Incident
Recent reports indicate a cyber attack on the CBSE re-evaluation portal, leading to significant disruptions in its payment system. Here’s a detailed look at what transpired.
Technical Glitch and Unauthorized Access
The re-evaluation portal, designed for numerous CBSE students, has recently become a topic of intense scrutiny. This time, the focus is not on the results or the re-checking process, but rather on a serious technical issue that has arisen. Reports suggest that the payment system was compromised, allowing around 50 students to gain unauthorized access, which led to various unusual and alarming issues regarding fee payments.
Fee Anomalies
As students began their re-evaluation applications, they noticed that the displayed fee amounts were drastically inconsistent. Some students encountered a fee of merely ₹1, while others faced charges soaring to ₹67,000 or ₹68,000. This unexpected variation left many students and their families confused.
Investigation and Findings
Initial investigations suggest that the anomaly stemmed from the payment gateway associated with the portal. It appears that unauthorized individuals manipulated the fee amounts. Officials believe that while some actions may have been intended as pranks, others could have been motivated by malicious intent.
Impact on Portal Functionality
This issue also affected the portal's overall functionality, with numerous students reporting difficulties in submitting their applications on time. The portal experienced disruptions for a period, prompting technical teams to investigate the root cause of the problem.
Government Response
Government sources confirmed that altered fee amounts were identified for about 50 students, raising concerns about the payment process's integrity. Officials are treating this matter with utmost seriousness and are working to enhance the system's security. Following this incident, the Ministry of Education took action. On May 24, Union Education Minister Dharmendra Pradhan met with Union Finance Minister Nirmala Sitharaman to address the challenges faced by students. They agreed to fortify the CBSE payment system to prevent future occurrences.
Integration of Major Banks
To bolster security, four major public sector banks have been integrated into the system: State Bank of India, Canara Bank, Indian Bank, and Bank of Maharashtra. Their payment gateways are being linked with the CBSE portal to enhance the reliability of the payment process.
Expert Assistance for Investigation
To thoroughly investigate the situation, assistance is being sought from leading technical institutions in the country. Experts from IIT Madras and IIT Kanpur are currently reviewing the entire system, alongside a team from the Digital Infrastructure Corporation of India. They are meticulously examining the portal's code, payment system, and security framework to identify and rectify any vulnerabilities.
System Migration to AWS
Sources have indicated that the portal previously faced issues related to storage and capacity due to high simultaneous login attempts by students. To address this, the portal has now been migrated to the Amazon Web Services (AWS) platform, which will enhance its capacity and ensure smooth operation even during peak usage.