The Apache Software Foundation published a new Log4j patch late on Friday after discovering issues with 2.16.

Log4j is patched, but the exploits are just getting started As updates to affected software slowly roll out, other quicker fixes are a crucial stopgap ...

A newly discovered zero-day vulnerability in the widely used Java logging library Apache Log4j is easy to exploit and enables attackers to gain full control of affected servers.

A sure-fire way to prevent exploitation of Log4j vulnerabilities has yet to appear, but these actions are your best bet for reducing risk.