Olivia
Online
Subrata Dass
@subratadass
Quizzer , Reader , Product Manager , Jokar ,RECKer, South Pointer
Joined April 2009
396 Following
273 Followers
2.2K Posts
🚨Citizen Duty Wins: Alert Mumbaikar Fights against Forced Labour
Outside this iconic government building a builder's agents publicly humiliated a poor construction worker who simply wanted to quit and return home
To trap him they falsely accused him of theft
A passing bystander showed exemplary civic sense by fearlessly confronting the abusers until they fled.
This incident highlights that actively standing up against injustice is a core responsibility that can successfully dismantle modern bonded labour
Ultimately this strong display of awareness protected the innocent victim's freedom ensuring he safely returned home without any police involvement
Jaipur Police !
The son pleaded, "Sir, it's an emergency. Father will die."
The police officer persisted for an hour in issuing a challan; the bike keys were snatched... and the delay in treatment led to his death
No good deed goes unpunished in Vishwaguru Amrit Kaal.
be @ni5arga
→ 19 years old, from West Bengal, studied in Delhi for a few years
→ just finished his own Class 12 exams in 2026
→ calls himself a hobbyist cybersecurity researcher
→ says he is an engineer, not a hacker
→ built an OSINT engine, a stock-tracking TUI, a pastebin in Rust
→ once found bugs in FOSS United and disclosed them quietly
→ just another CBSE student watching his own board roll out a new digital marking system
then he opened the portal
→ CBSE moves Class 12 evaluation to On-Screen Marking, 1.8 million students affected
→ Nisarga sees the portal link is fully public, gets curious
→ opens DevTools, downloads the Angular JavaScript bundle
→ first vulnerability found in 30 minutes
→ a literal master password sitting in plain text inside the frontend code
→ enter it, the OTP field auto-fills, the entire login flow gets bypassed
→ OTP validation happens in the user's browser, not on the server
→ no route guards, every internal page reachable by editing browser storage
→ password reset API never checks the old password
→ systemic IDOR across the entire API, change one value in sessionStorage, become any examiner
→ outcome: take over any teacher account, view answer sheets, edit marks
25 February 2026. He reports everything to CERT-In the same day.
→ CERT-In asks for a screen recording, he sends a full walkthrough
→ acknowledgement comes back as a boilerplate reply
→ reference number assigned: CERTIn-16590126
→ he follows up multiple times. no response.
→ three months pass. portal still live. Class 12 results released. vulnerabilities still there.
→ 22 May: publishes the blog post and a thread on X
→ Deedy Das, Satish Acharya, Internet Freedom Foundation amplify it
→ the post goes viral
→ CBSE issues a clarification: that was just a test portal, no breach
→ the URL CBSE cited in their own tweet was not even a registered domain
→ a friend buys the domain and points it at Nisarga's blog
→ CBSE quietly deletes the tweet
then it gets worse
→ 25 May: finds an SQL injection vulnerability on the live production portal
→ reports to CERT-In, gets a one-line thank you
→ gains admin access to the live https://t.co/1WpmNGsczK server
→ portal stays up for four more hours
→ he uploads anime videos and memes, links them publicly from CBSE servers
→ plays a viral Japanese song on a CBSE page, makes the news for it
→ CBSE finally takes the whole portal down
then he reads the database
→ master table accessed: 10 GB, 9.3 million records
→ examiner names, addresses, school names, bank account details
→ passwords stored in plain text
→ login tokens anyone can paste into a browser to log in as that user
→ 31 May: finds a second live CBSE production portal, 45,074 records of failed payments
→ emails, phone numbers, payment IDs, order IDs, all readable
→ 31 May, the bigger one: an AWS S3 bucket is misconfigured
→ ListObjectsV2 works without authentication, the bucket root is listable
→ samples pulled from 18 lakh scanned 2026 answer sheets, every subject
→ multiple institutions sharing the same bucket
→ also notices something strange in the scans: bedsheets visible in the background of answer sheets CBSE paid for proper scanners to handle
CBSE responds
→ posts an AI-generated image saying the system is robust and secure
→ three days later admits some vulnerabilities existed and have been contained
→ refuses to name the cybersecurity firm doing the audit
→ claims they tried contacting him. he says they have not.
→ Internet Freedom Foundation writes to the Ministry of Education and CERT-In
→ asks for an investigation into CBSE, a review of the contract with vendor Coempt EduTeck, a full audit
→ he points out he could have sold this data and made a lot of money
→ he did not. he is a CBSE student too.
→ his own analogy: the door wasn't just unlocked. the key was lying on the ground in front of everyone.
a 19-year-old with a anima pff broke a national exam evaluation system in 30 minutes with browser developer tools and the government is still pretending it was a test environment
Who to follow
Souvik Basu
@souvik130185
Quizmaster. Foodie. Traveller. A casual player in the game of life.
Virtual Qm (Quiz)
@QmVirtual
I set Questions regularly! Passionate about new things and quizzing😀. Love to share question/answers. Here is my QUIZ blog
https://t.co/eEBwnNZ9JA
#quiz #gk
Our Quizzing Journey
@quizzingjourney
This book presents the quizzing experiences of the Pai brothers: Yogesh, Sures & @paisatish
& covers everything from cracking a quiz to sources, TV shows etc
Want to know the names of the govt officials in Andhra Pradesh on whose watch 16 people died due to adulterated milk? Well, you can’t anymore - the Data Protection law has amended the RTI Act to prevent disclosure of all personal information, including names of govt officials, under section 8(1)(j). Watch - https://t.co/y1VDoQ8TRO
Woah
The Mughal Princess of Mexico
In the central Mexican city of Puebla, a short drive from the largest pyramid ever built, stands the world’s most unexpected Mughal tomb.
In an unprecedented atrocity and attack on freedom of media in India, the Rafi Marg office of the nation’s oldest news agency, United News of India (UNI), was literally attacked by a police force that would put an anti-terror operation to shame. Employees were not given time to even collect their belongings or hear from management. The management has been left outside, and employees are being beaten inside.
#UnitedNewsOfIndia #UNI #PressFreedom #JournalismUnderThreat #MediaFreedom #FreePress
[United News of India sealing, UNI office eviction, press freedom India, media crackdown, independent journalism crisis, journalists eviction, free press concerns, news agency India, media rights, democracy and media India]
Wow ....such awesome conditions of law and order
@IndiGo6E you started messing up from the first of December , why are you only giving a full waiver from the 5th of December ?
SHARE MAX
BBC Report EXPOSES the Artificial Filtered Water Pond at Vasudev Ghat which was created for Narendra Modi.
The workers explain how The Pipeline water is being filled in the Pond.
Look at the difference in water!!
Is it a crime to build a world class road in India?
One Malaysian contractor who committed suicide - may provide the answer.
Awesome ad by The Hindu
This is brutal from The Hindu 😹
Completely destroyed Godi Media.
HEARTBREAKING VIDEO FROM DELHI
An elderly woman narrates how BJP
Govt in Delhi under @gupta_rekha has demolished her house and left her homeless and without food!!
Everyone must watch this!!
@greatbong Since you have fame .... You have the responsibility of not mouthing random stuff that comes to your mind ....
Also fame is pretty easily available in India these days .... Even Dolly Chaiwala has it ...try getting the medal though
#planecrashahmedabad
Ravish Kumar brutally exposes how this year’s Parliament Standing Committee report flagged staff shortage as a serious threat to airport safety and security.
53 % posts vacant in DGCA.
17% posts vacant in AAI.
35 % posts vacant in BCAS.
Do watch and share.
Bravo! Yet another bridge in Tamil Nadu decided to go swimming. Engineering marvels. India is a place where concrete is optional but corruption may be compulsory in Government Projects.
Informative graphic in HT that should make every Indian embarrassed about our economic model.
The inequality is so stark that all it takes is a net worth of 22 lakh and an annual income of 2.9 lakh to break into the top 10%
Just in: A 48-year-old Software Architect from Bangalore was forced to resign after developing a disability. In his 20-year career, he paid over ₹2 crore in taxes, income tax, cess, surcharge, everything. A law-abiding, tax-paying citizen who built India’s tech backbone.
But the moment he lost his job, the system he funded turned its back on him.
No unemployment benefits.
No disability pension.
No financial support.
Just rising bills and a body that now needs regular treatment.
He’s trying to survive in Bangalore, one of India’s most expensive cities, while battling mounting expenses. He’s looking for freelance work to stay afloat, but even then, 31.2% of every rupee he earns is snatched away as tax.
But the cruelty didn’t stop there. He submitted a claim for his disability insurance, expecting some relief.
The insurance company rejected it, saying, “You didn’t mention this condition in your original application,” even after submitting all the medical test reports proving it developed after the policy was issued.
So let’s get this straight😡:
🔹He paid his taxes religiously for 20 years.
🔹 He bought insurance and paid hefty premiums.
🔹 Now disabled, jobless, and abandoned, no claim, no help, no justice.
🔹 Still forced to pay 18% GST on his health insurance premium, despite having no income.
What kind of country punishes its honest citizens for falling sick?
This is not just his story. This is the story of millions of middle-class Indians who are taxed, looted, and then thrown away like garbage the moment life gets hard.
This is not India. This is a brutal hell.😡😡😡
Last Seen Users on Sotwe
gavat🫎
Seen from Turkey
نسرين ام جبة 
Seen from Egypt
thèm địt máy bay bà già
Seen from Singapore
RAW ASfff
Seen from United States
El-Haiǧān
Seen from Egypt
Soph
อยากลองพาเมียโดนสวิงของใหญ่
Seen from Thailand
sempakbekaslovers
Seen from Indonesia
thích lông bụng
Seen from Vietnam
الفحل الاسمر
Seen from Algeria
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.2M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.3M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers