If a web application you oversee at State Farm suddenly became vulnerable, how would you handle the situation?