Perhaps more concerning, even after the problem was discovered, De Ceukelaire says it took more than a month for Facebook to contact the developers involved. As of this writing, the vulnerability has been fixed and Facebook has even donated $8,000 to the Freedom of the Press Foundation as part of their Data Abuse Bounty Program – at De Ceukelaire's request. But the company had initially indicated it would take two or three months to finish investigating the matter. Depending on whether or not a Facebook app's developer is notified and fixes the problem internally, that potentially leaves users exposed for that much longer. With consideration of how many applications are running on the platform, that also means there could be plenty of others with similar security issues. So, while the social media giant continues its investigations into these kinds of issues, De Ceukelaire has some sound advice for those still using Facebook; users should be careful about granting permissions, only install apps they're currently using, and delete cookies after removing any given app.