Subtle Operational Security Mistakes That Compromised Clean Operations

The post asks users to share subtle operational security (opsec) mistakes they have observed that compromised otherwise clean operations. The author specifies that these are not obvious errors like the lack of a VPN, using personal accounts, or metadata leaks, but rather small mistakes that are not on checklists yet can still lead to detection, logging, or tracing. Examples include repeating payload behaviors without variation, connecting to a C2 at the same time each night, using the same obfuscation style in different builds, and schedules that match normal browsing habits.