With the company still reeling from the Cambridge Analytica fiasco that brought attention to just how little regard it had for its users' data privacy, Facebook's data security practices—or lack of them—have continued to find the headlines. Let's start with a biggie: Australian cybersecurity firm UpGuard recently discovered more than 540 million Facebook user records that had been exposed for years on two unprotected Amazon Web Services S3 "buckets," which store data files. While the direct responsibility for the data clearly lies with the two companies that were storing it, the discovery raises questions about Facebook's diligence on the security front. So long as the social media giant continues to provide app makers and other partners with access to its users' data, it would behoove the company to be aware of partners who either don't apply sufficient security measures or have ceased operations and may not have corralled any public data. Meanwhile, while Facebook has been in damage control mode while it shores up the security of its users' data, it also has been contending with the use of its platform as an enabler of the hacker community.