From Phishing to Vishing: Why DevSecOps Must Rethink Communication Security

Vishing, a phone-based phishing threat, is on the rise due to AI and social engineering. DevSecOps must expand its scope to include communication channels like voice and chat. This requires integrating threat models and security pipelines to protect against these new threats. Engineers should prioritize communication security in their threat models and pipelines.