NEET UG 2026: When the Paper-Setter Is the Leak — The NTA Insider Threat

India's Worst Exam Security Nightmare Just Got Worse

On May 12, 2026, the National Testing Agency cancelled NEET-UG 2026 — an examination taken by 22.79 lakh medical aspirants — following credible evidence that the Biology question paper had been leaked before the May 3 exam date. Within days, the Central Bureau of Investigation made arrests that reframed the entire story.

The leaker was not a rogue printing press worker. Not a transport contractor. Not a vigilant student who photographed a paper through a ventilation gap. The leaker was a member of the NTA's own paper-setting committee.

Manisha Gurunath Mandhare, a botany lecturer at Modern College of Arts, Science and Commerce in Pune, had been appointed by the NTA as a subject expert on the committee that prepared the Biology paper. Professor PV Kulkarni of Latur, a chemistry expert who CBI has described as the operation's "kingpin," was separately a member of the question-setting panel for chemistry. Both were arrested this week.

This is not a story about broken locks on a vault. It is a story about a trusted custodian who had the key.

How the Insider Network Operated

According to CBI investigators, Mandhare used her authorised access to the Biology paper — access she had legally, as a paper-setter — to orchestrate a coaching network beginning in late April 2026.

She allegedly invited NEET aspirants to her Pune residence through an intermediary, Manisha Wagmare, who was arrested on May 14. At these sessions, students were not handed a printed copy of the paper. Instead, they were asked to listen while Mandhare discussed questions in detail, note them in notebooks, and mark them in their textbooks. By the time NEET-UG 2026 was administered on May 3, students who had attended those sessions reportedly found more than 120 questions matching what they had been coached on.

The sophistication of this approach — oral coaching rather than physical photocopying — was designed precisely to defeat conventional anti-leak security measures. There was no paper trail, no digital file transfer, no printing anomaly to flag.

The total number of arrests in the case has risen to nine as of May 17, with CBI conducting raids across Delhi, Jaipur, Gurugram, Pune, and Nashik.

Why This Attack Vector Is Unique

India has experienced paper leaks before. The 2024 NEET UG controversy, the December 2025 UGC-NET cancellation, the Chhattisgarh board Hindi paper leak in 2026 — these incidents typically involved leaks at the printing, transit, or exam-centre level. Security responses have accordingly focused on:

None of these measures address the insider threat that emerged in NEET-UG 2026. A paper-setter who has legitimate access to the final question paper represents a supply chain vulnerability at the very origin of the chain. You cannot encrypt a document against someone who helps write it.

This is what makes the 2026 case structurally different from every previous Indian exam leak: the trusted expert and the threat actor were the same person.

The Question Paper Supply Chain and Its Weakest Links

A typical national paper-based examination involves roughly the following chain of custody:

Steps 3 through 5 have received enormous investment in security technology in recent years. Steps 1 and 2 — where humans with deep subject knowledge have unfettered, legitimate access to the paper's full contents — have received far less attention, precisely because these individuals are considered beyond suspicion.

The NEET-UG 2026 arrests suggest that this assumption needs to be revisited urgently.

What Structural Reform Could Address This

The investigation has triggered a broader debate about what a secure examination system for India actually requires. Several ideas are now circulating at the policy level:

Compartmentalised Paper Setting

Instead of any single expert setting a complete paper, questions could be drafted by larger pools of experts who each contribute only a subset, with final assembly performed by a separate, blinded committee. No individual contributor would know the full composition of the paper. This is operationally complex but eliminates the "complete access" insider threat.

Randomised Question Banks with CBT Delivery

When the examination is computer-based and each candidate receives a unique combination of questions drawn from a large, encrypted question bank, leaking any single set of questions becomes far less valuable. Even if a paper-setter has access to a subset of the bank, they cannot predict which questions any given candidate will face. The Union Education Minister confirmed on May 15 that NEET-UG will shift to computer-based testing from 2027, citing the OMR-based system's structural vulnerability.

Time-Locked Access with Mandatory Multi-Party Decryption

Question papers could be stored in encrypted form, with decryption requiring simultaneous input from multiple authorised parties — for example, both a CBI officer and an NTA official — on the morning of the exam. No single insider would hold enough cryptographic key material to reconstruct the paper alone.

Post-Setting Integrity Audits

Random audits where paper-setters' communications, travel, and financial transactions during the setting period are monitored under court-approved procedures. This is invasive but functions as a deterrent.

The Digital Evaluation Connection

It is worth noting that the NEET-UG 2026 scandal involves question paper delivery security — not answer sheet evaluation. The evaluation of OMR sheets, which is largely automated, was not the point of failure here.

However, the crisis illustrates a broader principle: the integrity of an examination depends on the integrity of every link in the chain, not just the most visible ones. Institutions that invest in digital answer evaluation — creating immutable, time-stamped, evaluator-blinded records of how each answer sheet was marked — are building the evaluation-side equivalent of what examination delivery urgently needs on the paper-setting side.

Digital audit trails do not prevent insider threats at the question-setting stage. But they do make post-exam manipulation of results virtually impossible. In a system where both ends of the chain are secured digitally, the attack surface shrinks dramatically.

The Immediate Impact on 22 Lakh Students

The human cost of this failure is significant. Over 22 lakh candidates — many of whom had prepared for years, taken significant financial risks to attend exam centres across the country, and performed well — now face a re-examination scheduled for June 21, 2026. Many will need to rebook travel, accommodation, and leave from jobs or coaching institutes.

The National Testing Agency has confirmed that examination fees will be refunded and admit cards re-issued. A correction window has been opened for candidates to update their exam centre preferences for the re-test.

FAIMA (Federation of All India Medical Association) has simultaneously filed a petition in the Supreme Court seeking NTA's overhaul and re-examination under judicial supervision, arguing that a systemic failure of this magnitude warrants institutional restructuring, not a simple re-test.

Lessons for the Examination Ecosystem

The NEET-UG 2026 insider case has several implications beyond the immediate investigation:

India's exam system is at an inflection point. The arrests this week are a beginning, not an endpoint. The structural changes required — in question-setting protocols, technology infrastructure, and institutional oversight — will take years to implement and will be expensive. They are also unavoidable.

---

Related Reading