If you’ve ever created web pages, the C:\Inetpub folder is where the website project gets published (it defaults to this locally unless you manually change it).
It possible that in the future, Microsoft will push some internet content to this folder. They should at the very least, explain the reason for creating this folder when Internet Information Server is not installed.
“If you’ve ever created web pages, the C:\Inetpub folder is where the website project gets published (it defaults to this locally unless you manually change it).”
On windows servers...Linux uses /var/www.
But with that said here is what MS says...
Key Points:
The folder is automatically generated during the installation of KB5055523.
It typically appears on the installation drive (usually the C drive).
Even though IIS is normally responsible for this folder, most affected users won’t have IIS turned on.
The folder is empty and occupies zero bytes, indicating that no actual web content is being hosted.
This anomaly, while unusual, has been confirmed by multiple tests and log reports, giving reassurance that it is part of the update’s quirk rather than malicious activity.
“rather than malicious activity.”
If they say there is no malicious activity then there is more than likely malicious activity planned.