General

Technical

Setup

What is RATtrap?

RATtrap is an elegant, zero-configuration, auto-updating, smart-firewall for the home user. RATtrap protects all of the devices that are connected to the home network, everything from mobile devices to your smart TVs, including the home router, from threats on the internet

How does RATtrap work?

RATtrap actively monitors traffic entering and leaving your home and makes real-time decisions. Through examination of traffic headers and metadata, RATtrap can easily identify malicious connections and block them in real time. All RATtrap devices continuously receive attack threat intelligence data from the RATtrap cloud so that you are always protected from the latest evolving threats.

Why is a device like RATtrap needed?

Cybercrime is on the rise. There are approximately 1.5 million cybercrimes each year, or about three attacks every minute. Internet-enabled devices may make our lives easier, but they also leave user data vulnerable. This is where RATtrap can help. RATtrap protects against ransomware, credential theft, privacy violations, malicious advertisements, attacks on your internet connected devices and attacks originating from the deep dark web.

What types of devices does RATtrap protect?

RATtrap protects all of your internet-connected devices, including mobile phones, tablets, baby monitors, media players, smart TVs, gaming consoles, smart thermostats and most importantly your home router.

Is there a limit to the number of devices RATtrap will protect?

No, we do not impose any artificial limits. RATtrap protects ALL of your internet connected devices including your home router, all the devices on your LAN and all your WiFi connected devices. If you decide to add more connected devices to your home, just plug those in and RATtrap will protect them.

Can RATtrap see all my network traffic?

RATtrap sits between your router and modem, meaning it has the same limited visibility into your network traffic as your Internet Service Provider (ISP). RATtrap operates like a guard outside your front door – the guard continuously monitors and addresses external threats that may arise, but is not aware of what happens inside your home.

Where is RATtrap made?

RATtrap is proudly made in the United States. RATtrap was designed in Virginia and built in Texas and Pennsylvania.

What countries is RATtrap available in?

RATtrap is currently available in the United States. We are fully aware of the demand for RATtrap from all around the world and we will make RATtrap available internationally in the future.

What is RATtrap’s speed rating?

While we make every effort to keep your speed operating at optimal capacity, it is important to know that if you have a 300 Mbps (Megabits per second) or greater service speed tier with your Internet provider, you will see a decrease in throughput. RATtrap’s default security protection processes between 150-180 Mbps. We do offer a “Speed Boost” option in RATtrap’s Device Settings and in general we can process between 250 – 270 Mbps on average.If this is a limiting factor for you, please reach out to us at hello@iotdef.com and let us know. We would like to keep you informed on any upcoming hardware revisions that provider higher capability as that is the current limiting factor.

Will RATtrap improve my wireless connectivity?

While RATtrap will not improve your wireless connectivity, it also will not interfere with your WiFi connection.

What’s with the name RATtrap?

A RAT is an acronym of Remote Access Trojan, a type of malicious software that is used by threat actors to take control of your internet connected devices. RATtrap is a security device that has been designed to trap and halt criminal and malicious activity caused by RATs and other forms of malware. We promise, we have no affiliations to rodents although we have nothing against our little mouse friends.

How does RATtrap work?

The RATtrap device works in concert with the RATtrap cloud backend. The RATtrap cloud backend uses multiple mechanisms to offer defense-In-depth. It collects, aggregates, and processes attack data from a variety of sources and methods. It uses a global DNS infrastructure to offer private secure DNS protection. It establishes behavioral profiles of consumer Internet of Things (IoT) devices and uses machine learning at scale to detect anomalies. The attack threat intelligence data gathered from all of these mechanisms is distributed to RATtrap devices which use the data to block malicious traffic in real time based on IP addresses and DNS requests and responses as well as other attributes of home network traffic.

What data does RATtrap examine?

RATtrap examines packet level metadata traversing through the egress point of your network. Armed with the attack threat intelligence data downloaded from the RATtrap cloud, RATtrap can make instantaneous decisions about your home network traffic without the need to send packet level metadata to the cloud in real-time.

Does RATtrap examine the contents of HTTPS/SSL/TLS traffic?

RATtrap does not perform content inspection of HTTPS traffic, so your encrypted traffic remains secure and private.

Does RATtrap use an ARP-based mechanism to examine traffic?

RATtrap does not use Address Resolution Protocol (ARP) to examine traffic. ARP is very critical to how devices communicate on your network and must not be disturbed. A popular ARP-based mechanism also known as ARP spoofing or ARP poisoning works by flooding your home network with packets that causes multiple devices to malfunction as well as slow down the network. The industry recognizes ARP-based mechanisms as malicious activity and some home routers actively block it.

Doesn’t my home internet router have built-in security?

Most home internet routers implement a stateful packet inspection (SPI) firewall based on technology from the 1990s. SPI’s passive nature doesn’t stand a chance against the today’s modern threats targeting IoT devices. Moreover, home internet routers are a big target for attackers because they have software which have multiple vulnerabilities and they are unable to update themselves when the vulnerabilities are discovered and exploited by hackers. These shortcomings prevent most home internet routers from blocking the latest evolving threats and actually make the routers the most vulnerable device on then network.

Does RATtrap protect devices that are already infected when brought into the home network?

Mobile devices like laptops, phones or tablets typically connect to multiple networks. If these devices were to get infected on those networks and later rejoin your home network, RATtrap uses the attack threat intelligence data to identify and block infected devices from communicating. This ensures that these infections do not comprise your security and privacy.

What makes RATtrap the best product in its category?

RATtrap has been designed for the everyday person. While other products require multiple devices to be reconfigured, RATtrap does not require you to change any settings on any existing devices. With RATtrap, there is no need to configure bridge mode, gateway mode, access point mode or change DHCP settings on any device on your network. RATtrap can simply be plugged in between your existing broadband modem and home router and it instantly protects all the devices on your home network.

Why does RATtrap provide the option to block ads?

Ads are an important part of the internet ecosystem. However, the way ads are delivered through Ad networks can lead to malicious ads being delivered on seemingly legitimate websites. These malicious ads contain hidden scripts that can infect the device that displays the ad. This is commonly referred to as “drive by downloads”. RATtrap’s goal is to secure consumer internet devices from threats of all types. Blocking ads is an important part of this offering and customers are provided with the choice to block Ads and protect their devices from being infected.

How frequently does RATtrap update itself?

RATtrap continuously checks for updates to its attack threat intelligence data and to its software. As soon as new threats are detected, the RATtrap cloud updates all RATtrap devices. The frequency of updates can vary significantly.

Can RATtrap guarantee security and privacy for all the internet connected devices at my home?

Security is not absolute. The goal of any security solution is to increase the cost of attacks so as to deter criminals from standing to gain from these attacks. RATtrap has been designed by the folks at IoT Defense, who have multiple decades of experience in cyber security in the commercial and the government sectors. RATtrap is the culmination of their collective insights into how hackers conduct attacks and how they can be prevented.

Can RATtrap be hacked?

It is a tall order to claim that a device cannot be hacked. The RATtrap team knows better than to falsely advertise as such. However, multiple precautions have been taken to set the bar as high as possible to prevent RATtrap from being attacked over the internet. Here is a small sampling of these steps:

RATtrap uses encryption while communicating with the RATtrap cloud.
RATtrap uses digital signing while applying software updates.
RATtrap encrypts all DNS lookup request and response data
RATtrap uses per-device unique keys for authentication
RATtrap minimizes its’s attack surface by turning off all unnecessary services.

How easy is it to setup RATtrap?

We developed RATtrap with you, the end consumer, in mind. Setting up RATtrap couldn’t be any simpler – just connect the RATtrap to your home router and your broadband modem using the Ethernet cables (included in the product package), plug in the power adapter (included in the product package) and you are all set. You are protected by RATtrap, NO software to install, NO configuration just Plug, Protect, Play. Told you it was simple.

Will RATtrap work with my internet service?

RATtrap works with all major internet service providers (ISPs) and the most common broadband modems including Cable modems, FiOS modems, Satellite modems and DSL modems.

Does RATtrap work with integrated router modems?

RATtrap works with integrated router modems if there is another router behind it. For example, users who have eero, OnHub, Luma for enhanced wireless connections, can setup RATtrap between the integrated router modem and these devices.

We are working on solutions to bring the protection offered by RATtrap to integrated router modem devices. This will be available in the near future.

How do I learn about the attacks blocked by RATtrap.

All RATtrap users receive a monthly device activity summary via email. In addition, the RATtrap web portal and the RATtrap mobile applications for iOS and Android feature real-time updates on threats that have been blocked by RATtrap as well as home network performance and bandwidth usage.