Executive Summary
The recent bust of a cheating syndicate during the Staff Selection Commission (SSC) Multi-Tasking Staff (MTS) examination in Dehradun highlights critical vulnerabilities in Eduquity's exam infrastructure. Operators exploited weak network security to remotely access and assist over 100 candidates via a hidden proxy server, compromising exam integrity (Hindustan Times, 2026; The Tribune, 2026). This incident, coupled with Eduquity's history of technical glitches, server failures, and controversial tender awards, underscores a pattern of prioritizing cost over robust security measures. Key lapses include poor network segmentation, inadequate server hardening, and absent endpoint controls, making high-stakes exams susceptible to breaches. Recommendations include adopting zero-trust architectures and enhanced monitoring to safeguard future assessments.
Introduction
Eduquity Career Technologies Pvt. Ltd. is an edtech firm specializing in conducting large-scale online examinations in India. Despite claims of experience and security adherence, the company has faced repeated controversies, including tender issues and past operational failures (Bhaskar English, 2025; Testbook, n.d.). Eduquity replaced established vendors like TCS for SSC contracts, leading to widespread complaints about exam mismanagement.The SSC MTS exam, a high-stakes recruitment test for government positions, relies on computerized systems for fairness and efficiency. However, the Dehradun incident exposed how Eduquity's cost-cutting approaches enabled sophisticated cheating, eroding trust in the process (ETV Bharat, 2026; Times of India, 2026). This report analyzes the incident, identifies systemic flaws, and proposes technical remedies.
Description of the Incident
On or around February 13–14, 2026, a joint operation by the Uttar Pradesh and Uttarakhand Special Task Forces uncovered a cheating racket at the Mahadev Digital Zone examination center in MKP Inter College, Dehradun, where Eduquity was administering the SSC MTS exam (Hindustan Times, 2026; The Tribune, 2026). The syndicate operated from a hidden underground room equipped with a proxy server and networking gear, allowing remote hacking into the exam server to access IP addresses of approximately 100 candidates' computers (Careers360, 2026; Oneindia, 2026).The method involved installing a master computer at the center, using local area networking to set up a proxy server for remote access, enabling real-time assistance to paying candidates (fees reportedly up to ₹10 lakh each). Authorities arrested Nitish Kumar and Bhaskar Naithani, seizing four mobile phones, two laptops, and an internet router (ETV Bharat, 2026; Times of India, 2026). This breach manipulated the online process without detection during the exam.This is not isolated; similar incidents indicate broader vulnerabilities in SSC exams under Eduquity's management.
Analysis of Security Lapses
Eduquity's infrastructure appears optimized for low-cost scalability rather than security.
1. Weak Network Segmentation and Isolation
The compromise of one server influencing multiple PCs indicates poor isolation, allowing unauthorized proxy integration (Hindustan Times, 2026).
2. Inadequate Server Hardening
Servers were vulnerable to hacking, with absent patching and secure configurations evident from the breach and historical crashes (Bhaskar English, 2025).
3. Absence of Endpoint Lockdown and Controls
Candidate machines lacked lockdown, allowing remote tools undetected.
4. Deficient Monitoring and Detection
No real-time monitoring prevented alerts for suspicious activity.
5. Broader Infrastructure Issues
Eduquity's history includes blacklisting in some states, tender controversies, and compatibility problems (Testbook, n.d.; The Financial Express, n.d.). These stem from cost-driven compromises and controversial vendor selection.
Impact on Exam Integrity
Vulnerabilities undermine merit-based recruitment, foster corruption, and erode trust (Careers360, 2026).
Proposed Recommendations
Zero-Trust Architecture — Verify every access with multi-factor authentication.
Strict Firewall and Access Controls — Use NAC and 802.1X.
Endpoint Security Enhancements — Enforce whitelisting and secure boot.
Real-Time Monitoring and IDS — Deploy anomaly detection.
Infrastructure Upgrades — Invest in redundancy and audits.
Tender and Vendor Scrutiny — Enforce strict security criteria.
Conclusion
Eduquity's infrastructure for high-stakes exams is insecure due to cost compromises, as shown by the Dehradun breach. Reforms are essential to restore integrity.
References
Bhaskar English. (2025, August 1). Ground report SSC exam contract given to controversy-hit agency: Electricity cut between papers; students say computer mouse broke, server crashed, hard work wasted. https://www.bhaskarenglish.in/originals/news/ssc-protest-2025-tcs-vs-eduquity-vendor-controversy-technical-glitch-135629720.html
Careers360. (2026, February 14). SSC MTS recruitment: UP, Uttarakhand STF bust gang for helping candidates cheat in recruitment exam. https://news.careers360.com/ssc-mts-cancelled-up-uttarakhand-stf-bust-gang-helping-candidates-cheat-in-recruitment-exam/amp
ETV Bharat. (2026, February 14). STF busts gang helping candidates cheat in SSC Multi-Tasking Staff exam; Two held from Dehradun. https://www.etvbharat.com/en/state/stf-busts-gang-helping-candidates-cheat-in-ssc-multi-tasking-staff-exam-two-held-from-dehradun-enn26021401994
Hindustan Times. (2026, February 15). 2 held in SSC MTS exam cheating racket, hacking tools seized. https://www.hindustantimes.com/cities/lucknow-news/2-held-in-ssc-mts-exam-cheating-racket-hacking-tools-seized-101771093431296.html
Oneindia. (2026, February 15). Uttarakhand STF arrests gang members involved in SSC MTS exam cheating. https://www.oneindia.com/india/uttarakhand-stf-busts-gang-cheating-ssc-mts-exam-011-7998845.html
Testbook. (n.d.). SSC vendor 2025: Eduquity replaces TCS, exam failures, protests & govt action. https://testbook.com/ssc-jobs/ssc-vendor
The Financial Express. (n.d.). Nitish Rajput SSC row: From YouTube to courtroom - Why this exam controversy refuses to die down. https://www.financialexpress.com/trending/nitish-rajput-ssc-row-from-youtube-to-courtroom-why-this-exam-controversy-refuses-to-die-downnbsp/4136485
The Tribune. (2026, February 15). UP, Uttarakhand STF bust gang helping candidates cheat in SSC MTS recruitment exam. https://www.tribuneindia.com/news/india/up-uttarakhand-stf-bust-gang-helping-candidates-cheat-in-ssc-mts-recruitment-exam
Times of India. (2026, February 15). SSC online recruitment exam cheating through remote access of candidates' computers busted by U'khand, UP STF. https://timesofindia.indiatimes.com/city/dehradun/ssc-online-recruitment-exam-cheating-through-remote-access-of-candidates-computers-busted-by-ukhand-up-stf/amp_articleshow/128356924.cms
(Note: For undated web sources like Testbook and The Financial Express, "n.d." is used per APA 7. References are alphabetized by the first element. Dates reflect publication or crawl timestamps where available.)
