This inspirational talk is aimed at hackers and at IT/IS "blue teams". It goes through misconceptions and plain fails of information security protection. We go through several aspects of information security, and show how attacks are carried out not due to lack of resources, but due to organizations failing to look out of the box.