The penetration test has become the security industry's most expensive placebo. It is sold as the gold standard of 'taking security seriously,' but there is a massive disconnect between the marketing story and the actual security value.