Look at the Target compromise. It was caused not by a lack of encryption, what caused the breach which was an attack on integrity – a compromise of the credit card database configuration(s), machine reader software, and security layer component(s) that led to the loss of credit card information. Malware and viruses are integrity attacks.

Look at the activities of Edward Snowden.  He didn’t need to defeat encryption, he simply needed to compromise the credentials of the administrators who had access to the encrypted data, which he did with great success.

Consider the Internet of Things - a world of 50 billion devices continuously communicating. What is the point of encrypting traffic if the devices themselves can be easily compromised?

Let’s face it if you want to take out a country you don’t need to steal secrets. You simply need to manipulate the software inside their power-grid, communications and transport systems and it’s game-over. These are integrity attacks and the reality is there is not a single network administrator out there that can prove their network is in the correct state - it might be, it might not – they simply don’t know.  Geer's law states that "any security technology whose efficacy cannot be empirically verified is equivalent to blind luck." 

Integrity (of systems, of networks and of data) is the big gaping hole in security today. Without it, encryption is worse than useless, bringing a false-sense of security which almost always leads to downfall.