Lend Me Your Beam: Privacy Implications of Plaintext Beamforming Feedback in WiFi
Rui Xiao
Network and Distributed System Security (NDSS) Symposium 2025 · Day 1 · WiFi and Bluetooth Security
In an era where Wi-Fi devices are ubiquitous, forming the backbone of our connected lives in homes, offices, and factories, a new class of privacy-invasive attacks is emerging. This talk, "Lend Me Your Beam: Privacy Implications of Plaintext Beamforming Feedback in WiFi," presented by Rui Xiao from Jun University, unveils a novel attack dubbed **Zikib Beam**. This sophisticated yet practical attack transforms everyday Wi-Fi infrastructure into an adversarial motion sensor, capable of silently detecting human occupancy within a residence. Unlike traditional attacks that target data exfiltration or network traffic patterns, Zikib Beam operates entirely passively, requiring only a small sniffer device positioned outside a target location.
AI review
Solid, original wireless security research that identifies a genuinely overlooked side channel in a protocol component nobody was looking at. The attack is passive, practical, and the defensive proposal is technically coherent rather than the usual hand-wavy 'encrypt everything' non-answer.