Cyber Briefing: 2025.05.21

👉 What’s trending in cybersecurity today?

Hazy Hawk exploits DNS misconfigs for scams, More_Eggs backdoor hits HR via fake job apps, and fake Kling AI sites spread crypto-stealing malware. Cellcom suffers voice/SMS outage, ransomware disrupts UK’s Peter Green Chilled, and Kettering Health cancels procedures after attack. Dutch expand cyber espionage law, NIST & CISA introduce LEV exploit metric, and teen admits PowerSchool breach affecting 70M records.

Listen to our podcast here ⏬

Cyber Briefing

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please subscribe

🚨 Cyber Alerts

1. Hazy Hawk Hijacks Cloud DNS For Web Scams

Threat actor Hazy Hawk hijacks abandoned cloud resources of major organizations using DNS CNAME misconfigurations. These reputable hijacked domains are then used for adtech scams and malware distribution not espionage. The attacks involve cloning sites…