Cybersecurity sketchnotes: Lessons learned from the HAFNIUM Attack