Use fail2ban to block scanners looking for "Apache 2222":
If you have spent any time scanning server logs, managing a VPS, or browsing underground forums, you may have come across the term At first glance, it sounds like a critical zero-day vulnerability targeting port 2222 on Apache web servers. Headlines from dubious SEO-driven sites claim things like, "Hackers use Apache 2222 to bypass firewalls." apache httpd 2222 exploit
The primary defense against these exploits is simple: The Apache 2.2 branch reached its end-of-life in 2017. Current versions (2.4.x) have addressed these flaws and introduced more robust security modules. Use fail2ban to block scanners looking for "Apache