With IoT technology being widely implemented in crucial domains such as personal activity and health tracking or monitoring of critical technical processes, awareness for security risks has risen. First solutions for DevSecOps in IoT have been introduced in the past to detect typical programming flaws and the vulnerabilities they impose. With the increasing power and cheap availability of unlimited cloud resources, high speed networks and AI, new and more complex attacks seem feasible. In this paper we highlight these new threats and elaborate whether known approaches to IoT security are still sufficient or new strategies to fight the threats have to be developed. Furthermore, we present our approach to use the new technological possibilities in order to increase the power of security assessment and security tests for IoT.