Researchers scoured logs, finding opsec fail for at least one person who was working with INC and Lynx simultaneously