When ransomware attacks occur, organisations are often faced with a difficult decision: restore data from backups or pay the ransom. In IB Computer Science, students are expected to understand why backups are a critical defence, why paying a ransom is risky, and how this decision affects security, ethics, and long-term risk.
IB examiners reward answers that explain consequences, not just technical steps.
The Situation Ransomware Creates
Ransomware attacks:
- Encrypt files or lock systems
- Disrupt normal operations
- Apply time pressure to victims
Organisations may feel forced to pay in order to:
- Restore services quickly
- Avoid data loss
- Reduce downtime
However, this response carries serious risks.
What Are Backup Strategies?
A backup strategy is a planned approach to:
- Regularly copying data
- Storing backups securely
- Restoring systems after failure
Effective backup strategies include:
- Frequent backups
- Off-site storage
- Isolated backup systems
Backups provide a clean recovery option after ransomware attacks.
Why Backups Are the Safer Option
Using backups allows organisations to:
- Restore systems without paying criminals
- Avoid funding further attacks
- Maintain control over recovery
Backups ensure that:
- Encrypted files can be replaced
- Data integrity is preserved
- Systems can be rebuilt safely
In IB terms, backups reduce both impact and dependency on attackers.
Risks of Paying the Ransom
Paying a ransom carries multiple risks:
- No guarantee of data recovery
- Attackers may not provide a decryption key
- Decryption tools may not work properly
Even if data is restored:
- Systems may remain compromised
- Attackers may strike again
- The organisation becomes a known payer
IB students should explain that paying ransom does not remove the threat.
Ethical and Legal Concerns
Paying ransom:
- Funds criminal activity
- Encourages future attacks
- May violate regulations or policies
From an ethical perspective:
- Paying rewards harmful behaviour
IB examiners often expect students to mention ethical implications, not just technical ones.
Backups and Recovery Time
One reason organisations pay ransom is time pressure.
However:
- Well-planned backups reduce recovery time
- Automated restore processes speed up recovery
Backup strategies trade:
- Preparation effort
- For faster, safer recovery
This highlights the importance of planning before attacks occur.
Backup Limitations
Backups are not perfect.
Potential issues include:
- Backups may be outdated
- Backups may be infected
- Restore processes may be slow
IB students should acknowledge these limitations while explaining why backups remain the better option.
Ransomware and Risk Assessment
In risk assessment:
- Ransomware is high impact
- Backup strategies are key mitigation measures
Organisations that rely on ransom payments:
- Increase long-term risk
- Encourage repeat attacks
Backups reduce overall system vulnerability.
Comparing the Two Approaches
A strong IB comparison:
- Backup strategies
- Controlled recovery
- Ethical
- Long-term protection
- Paying ransom
- Uncertain outcome
- Encourages crime
- Increases future risk
Clear comparison earns marks.
Common Student Mistakes
Students often:
- Assume paying ransom guarantees recovery
- Ignore ethics
- Forget backup preparation
- Focus only on short-term outcomes
Long-term reasoning scores higher.
How This Appears in IB Exams
IB questions may ask students to:
- Evaluate responses to ransomware
- Compare backups and ransom payment
- Justify security planning decisions
- Discuss ethical implications
Balanced evaluation earns the most marks.
Final Thoughts
Backup strategies provide a reliable, ethical, and controlled way to recover from ransomware attacks. Paying the ransom is risky, encourages criminal behaviour, and offers no guarantee of success.
Understanding why backups are preferable allows IB Computer Science students to explain effective ransomware response strategies clearly and confidently — exactly what examiners expect.
