Original Fix for Log4j Flaw Fails to Fully Protect Against DoS Attacks, Data Theft

Organizations should upgrade ASAP to new version of logging framework released Tuesday by the Apache Foundation, security experts say.