Some Millennials also take a devil-may-care approach to passwords.

Fortune reports.

Millennial Employees Could Be Your Company’s Biggest Cybersecurity Risk

Maybe it’s not so surprising that Mark Zuckerberg’s social media accounts got hacked last week. A recent study by IT consultants Softchoice suggests that the 32-year-old Facebook CEO was only acting his age.

Using the same password for a bunch of different accounts, skipping two-step authentication when it’s available, and other risky online behavior is especially common among Millennials—even, previous research shows, if they’re trained techies who you’d think would know better.

The proliferation of cloud-based apps, which make it harder for tech departments to keep an eye on where company data may be vulnerable, isn’t helping. The Softchoice report says employees of all ages who use cloud-based apps are four times more likely to access work files outside the office through a program IT doesn’t know about than those who don’t.