> if they're smart enough to commit cybercrimes, why make such a basic opsec blunder?
Why do you assume that they have to be smart to commit cyber crimes? As a general rule, most criminals are as dumb if not dumber than most regular people. Cyber crime is no different. Consider that cyber crime is not (just) hacking, it includes things like calling someone's grandma to convince her she needs to wire you $40k now or someone might go to prison for a car accident. Or at least texting this over WhatsApp.
Maybe by binding the idea of smartness with the ability to think beyond the given and possibly not blindly obey exogenous rules. Of course smartness is a relatively independent parameter from ethics. If the law requires contributing to some genocides, blindly obey is not the same ethical dilemma as if it forbids to practice torture and murder.
Why do you assume that they have to be smart to commit cyber crimes? As a general rule, most criminals are as dumb if not dumber than most regular people. Cyber crime is no different. Consider that cyber crime is not (just) hacking, it includes things like calling someone's grandma to convince her she needs to wire you $40k now or someone might go to prison for a car accident. Or at least texting this over WhatsApp.