Ransomware as systemic cyber-extortion: How extractive digital capitalism fuels global economic vulnerability

Indigenous frameworks view data as a sacred, communal resource governed by relational ethics, contrasting with the extractive logics of digital capitalism that enable ransomware. Movements like the Māori Data Sovereignty Network (Aotearoa) and the Māori Data Governance Group argue for collective control over data, framing ransomware as a violation of intergenerational trust. These perspectives highlight how Western legal regimes (e.g., GDPR) fail to address the spiritual and cultural dimensions of data harm.

The rise of ransomware parallels the enclosure of the internet’s infrastructure in the 1990s, when privatisation of domain systems and broadband created monopolistic gatekeepers (e.g., ICANN, ISPs) vulnerable to exploitation. The 2008 financial crisis accelerated the financialisation of data, turning personal information into a tradable asset, while state surveillance programmes (e.g., PRISM) normalised mass data collection—both precursors to modern cyber-extortion. Historical parallels include the 1980s ‘phone phreaking’ era, where early hackers exposed systemic vulnerabilities in telecom monopolies.

In Africa, ransomware attacks on public hospitals (e.g., South Africa’s Life Healthcare in 2020) reveal how digital colonialism intersects with healthcare apartheid, where marginalised populations bear the brunt of systemic failures. East Asian states like China and Singapore frame ransomware as a national security threat, using it to justify expansive cyber-surveillance regimes that suppress dissent. Latin American cooperativist movements (e.g., Brazil’s ‘Rede Livre’) propose decentralised, community-owned cybersecurity as a counter to corporate and state capture.

Ransomware is a predictable outcome of the ‘tragedy of the digital commons,’ where unregulated data extraction leads to systemic collapse, as predicted by Hardin’s 1968 theory adapted to digital spaces. Studies show that 90% of ransomware attacks exploit known vulnerabilities (e.g., unpatched software), highlighting the failure of corporate patch management and regulatory oversight. The ‘broken windows’ theory of cybersecurity suggests that neglecting small-scale breaches (e.g., phishing) enables larger systemic failures, a pattern observed in ransomware proliferation.

Artists like Trevor Paglen and Hito Steyerl critique how ransomware embodies the ‘spectacle of data’—where digital violence is aestheticised as a technical glitch rather than a systemic crisis. Indigenous storytellers (e.g., the Māori concept of ‘whakapapa data’) frame cyber-attacks as disruptions to ancestral knowledge flows, requiring rituals of restoration rather than mere encryption fixes. Spiritual traditions like Ubuntu (‘I am because we are’) offer alternatives to individualistic cybersecurity models, emphasising collective resilience.

Scenario modelling by the Rand Corporation predicts ransomware will evolve into ‘ransomware-as-a-service’ (RaaS) ecosystems, where state actors and cybercriminals collaborate, destabilising global supply chains. A 2023 IMF report warns that ransomware could trigger sovereign debt crises if public institutions in the Global South are systematically targeted, exacerbating inequality. Futurists like Jamais Cascio argue that the only viable long-term solution is the ‘digital welfare state,’ where public cybersecurity is treated as a public good, not a market opportunity.

Marginalised communities in the Global South are disproportionately affected by ransomware due to underfunded public infrastructure and reliance on outdated systems, while cyber-insurance markets exclude them entirely. Black and Indigenous cybersecurity researchers (e.g., the ‘Hack the Hood’ initiative) are systematically excluded from policy discussions, despite their expertise in grassroots solutions. Women and non-binary technologists in the Global South face dual oppression—both as targets of ransomware (e.g., femicide databases hacked in Mexico) and as sidelined voices in cybersecurity discourse.