What if I told you, that the technology around us is broken? Not because it does not work, but because it does not deliver the security you expect it to. Internet is a mess, PKI is fundamentally flawed, encryption sucks and web applications are considered a major threat in the whole IT infrastructure landscape. Do you feel guilty about how the current state of security looks like? Should you? In this lecture we will go through the evil done to the technology by the engineers and we will try to answer the "guilty, not guilty" question. Regardless of the answer, we will try to look at some ideas and libraries that can help us all deliver more secure applications.