Affiliation: IRGC
Abbas Rahrovi (also spelled Rohroei), known internally by the alias 'ACS' and using the false identity MEKHAEEL HOSSEINI (ID: 4289995632), is the head of 'Department 40' - the external cyber group operating under the Counter Intelligence division (Division 1500) in IRGC's Intelligence Organization. Son of Rasul Rahrovi, born in Zanjan. Real National ID: 4270844116. In the early 2010s, Abbas established a cyber company called Cyber-Zn in Zanjan, recruiting cyber personnel for the Iranian government. After several years, he joined IRGC's Intelligence Organization (Division 1500) under former division head ROHOLLAH BAZGHANDI, where he founded a cyber department tasked with providing intelligence to meet the division's needs. The department operates from five civilian facilities across Iran with main headquarters in Tehran (formerly Shohada Base). Operating covertly, department members are registered under multiple front companies including Zharf Andishan Tafakor Sefid, Aman Pardaz Ofogh Iranian, and Aman Afzar Ofogh Iranian. His wife, NILOOFAR BAGHERI (ID: 4270932864), serves as CEO of Aman Pardaz Ofogh Iranian and head of the 'Sister's Team.' Most personnel are contract workers rather than formal IRGC employees, though Abbas himself is an IRGC officer. The group is publicly identified under various aliases including APT35, Charming Kitten, Fresh Feline, and Cobalt Sapling. Department 40 operates four core teams: Sister's Team (~20 women), Brother's Team (~20 men), Karaj Hacker Team (Team P68), and Marzdaran Hacker Team (Team P12), plus the new Heravi Attack Team (established early 2024). Operations include: data collection in tourism/travel sectors (Turkey, UAE, Jordan, Azerbaijan); surveillance and targeting of dissidents; recruitment of agents in UAE and Israel; offensive cyber operations (CNA) against civilian infrastructure; covert operations against Saudi Arabia; intelligence gathering targeting foreign embassies in Iran; and development of explosive drones and balloons for terrorist activities. The department has developed surveillance systems including 'Kashef' for tracking Iranian citizens, identifying connections based on family ties and shared communications.