When a nation’s lights go out, emergency crews find flashlights; when the internet goes dark, entire communities lose lifelines they cannot easily replace. “How do you call for help when the network disappears?” might be the simplest question asked about recent deliberate shutdowns — and also the hardest to answer without confronting policy, infrastructure, and human cost.
In September, Afghanistan experienced a striking example. For two days the country had no internet — not because of a submarine cable break or a technical failure, but by order of the ruling authorities. The blackout followed a more limited, localized shutdown two weeks earlier that officials reportedly justified as a measure “to prevent immoral activities.” No further explanation was published. The timing was especially cruel: communities still reeling from a major earthquake found emergency communications cut off, flights were grounded, and banking and commercial systems were interrupted. This Afghan blackout is not an isolated oddity; it sits inside a growing pattern of deliberate internet disruptions worldwide that are stunning in their immediacy and costly in their consequences.
To understand why these shutdowns matter, it helps to look at how modern digital life is wired. Much of what the public—and governments—take for granted depends on a handful of networking primitives: encrypted web traffic, routing policies across national borders, and a mix of private and public operators that carry bits between users and services. When those primitives are interrupted, it is not merely tweets that go dark; payment gateways fail, cloud services time out, single-sign-on and API-driven workflows stall, and critical apps lose their ability to authenticate users or relay data securely. An interruption that targets fundamental channels such as HTTPS (TCP port 443) can therefore cascade into economic and safety failures far beyond inconvenience .
What happened in other high-profile incidents clarifies the mechanisms and the risks. Research into a notable, hour-long outage affecting encrypted web traffic showed how a change that disrupts TCP port 443 produces immediate, visible disruptions for users and invisible but critical failures for businesses and governments alike. Time-sensitive payments stall, enterprise workflows fail, and services that assume continuous secure connectivity either fall back to unsafe methods or stop altogether. That event underscored the fragility baked into modern dependence on a small set of protocols and on a mix of national policy controls and commercial routing arrangements .
On the ground, the consequences are tangible and immediate. In affected jurisdictions, residents cannot complete essential financial transactions; hospitals and relief organizations can lose access to cloud-hosted patient records or coordination platforms; airline operations may be disrupted when reservation and communication systems cannot reach central servers; and local businesses lose hours or days of commerce. Beyond the acute operational harm, prolonged or unexplained outages erode public trust in government capacity and the reliability of critical services. Investigations and recovery are hampered when evidence is not preserved or when communication from authorities is slow or opaque, compounding political and social harm .
Why would governments order such shutdowns? The stated rationales vary: to prevent the spread of unrest or misinformation, to limit cheating on exams, to curb what authorities deem immoral behavior, or to forestall coordination among opponents. Policymakers often frame these actions as tools of public order or national security. Technologists view them as blunt, risky instruments that fail to distinguish between legitimate security concerns and the broad collateral damage caused by severing general-purpose connectivity. Civil-society groups warn of rights impacts: freedom of expression, access to information, and the ability to seek help are all impaired when the network is taken offline.
There are also strategic dimensions. Adversaries — state and non-state — study outages for lessons. A shutdown demonstrates capability and intent: if a regime can isolate an entire country or selectively target encrypted traffic, that technique becomes part of the repertoire other actors may seek to replicate. Conversely, governments that protect or restrict connectivity shape the incentives of both domestic and foreign actors in ways that can either stabilize or further fracture regional and global networks .
Different stakeholders see the trade-offs through distinct lenses:
- Technologists: emphasize resilience engineering. They push for routing diversity, multi-homing, better observability, safe rollback procedures for filtering policies, and deep investment in distributed measurement systems so outages are detected and diagnosed faster. They argue that configuration errors and poorly tested policy changes are common causes that engineering controls can reduce .
- Policymakers: face a dilemma between perceived short-term gains in control and long-term costs to economy, security, and legitimacy. Legislators and regulators must decide when (if ever) it is appropriate to sanction shutdowns, and what legal safeguards, transparency requirements, or compensation frameworks should apply to affected citizens and businesses .
- Users and communities: suffer immediate, often hidden harms. For people seeking emergency help, for entrepreneurs running digital-first businesses, and for families relying on mobile money, the outage translates into real economic loss and personal risk. Trust in public institutions diminishes when essential services are not preserved or when communications are censored without clear, credible justification.
- Adversaries and opportunists: can leverage outages. Cybercriminals may time attacks to coincide with confusion; rival states or actors may use such incidents as pretexts or models for digital coercion; and copycat tactics can spread if shutdowns are perceived as effective in the short term.
The economic accounting is stark. Several studies and incident reports show that even brief countrywide shutdowns can cost economies millions to billions of dollars, depending on the size of the market and the duration of the outage. Costs accrue from lost commerce, disrupted banking and payroll, grounded logistics, and the administrative burden of recovery and forensics. Indirect costs—reputational damage, lost investment, and longer-term declines in trust—are harder to quantify but no less real. The examples and technical analyses compiled by network researchers repeatedly emphasize that when core services such as HTTPS are impaired, the costs are immediate and widespread because so many services assume its availability by default .
What can be done? Practical measures fall into preparedness, policy, and design categories:
- Prioritize critical services: Governments and service providers should identify and maintain alternatives for emergency communications, financial rails, and essential public services that must remain reachable even during policy-driven disruptions.
- Improve transparency and legal guardrails: Any measure that curtails national-level connectivity ought to require clear legal authority, independent oversight, and public notification with timelines and remediation commitments.
- Build technical resilience: Encourage multi-homing, diverse international transit routes, and architecture that reduces single points of failure. Operators need safer change-management procedures so a misconfiguration cannot blackhole key protocols like port 443 without immediate rollback mechanisms in place .
- Institutionalize post-incident reviews: Independent, public after-action reports preserve lessons, restore confidence, and deter poorly judged future actions. Forensic preservation and information sharing also help the broader technical community harden defenses and reduce repeat incidents .
There are no easy moral or operational shortcuts. A government that claims a shutdown is necessary for order must reckon with proportionality: can the same objective be achieved with narrower, less destructive tools? Civil liberties advocates answer emphatically that the costs are too high when entire populations lose access to healthcare, banking, and emergency help. Technologists answer that the infrastructure itself is fragile and requires more robust engineering and governance. Policymakers must navigate both arguments while considering geopolitical consequences and domestic stability.
Deliberate internet shutdowns are not just a political symbol; they are a practical lever that, when pulled, rewires economies, emergency responses, and everyday life. The Afghan blackout — and the other recent national-level disruptions catalogued by observers — show the blunt force of that lever and the disproportionate fallout it creates. If we accept that digital connectivity is now a public good in the same sense as water or electricity, then the question becomes: who decides when to turn it off, under what rules, and with what safeguards in place?
As nations and companies grapple with that question, one risk looms large: treating outages as an occasional tool will encourage their repetition. Treating digital infrastructure with the same seriousness as physical infrastructure — with oversight, redundancy, and transparent governance — may be the only sustainable alternative. Otherwise, every deliberate shutdown will remain a rehearsal for deeper fragmentation of the global network, and every user will carry the real-world cost.
Source: https://www.schneier.com/blog/archives/2025/12/deliberate-internet-shutdowns.html




