New Update Windows 11 Patch Tuesday April 2025 (KB5055523 & KB5055528)

silversurfer

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,739
Microsoft has released Windows 11 KB5055523 and KB5055528 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues.

Today's updates are mandatory as they contain the April 2025 Patch Tuesday security patches for vulnerabilities discovered in previous months.
Click to expand...
www.bleepingcomputer.com

Windows 11 KB5055523 & KB5055528 cumulative updates released

Microsoft has released Windows 11 KB5055523 and KB5055528 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues.
www.bleepingcomputer.com www.bleepingcomputer.com

April 8, 2025—KB5055523 (OS Build 26100.3775) - Microsoft Support

support.microsoft.com support.microsoft.com

April 8, 2025—KB5055528 (OS Builds 22621.5189 and 22631.5189) - Microsoft Support

support.microsoft.com support.microsoft.com
 
  • Like
  • +Reputation
  • Hundred Points
Reactions: Nevi, Sorrento, Andrew999 and 10 others
SeriousHoax

SeriousHoax

Level 51
Verified
Top Poster
Well-known
Mar 16, 2019
4,038
It did this on mine too and I deleted that folder after searching online. Now I saw this article and realized that it happened to some other users too. It's not a problem, just odd
www.bleepingcomputer.com

Windows 11 April update unexpectedly creates new 'inetpub' folder

Microsoft's April 2025 Patch Tuesday updates are strangely creating an empty "inetpub" folder in the root of the C:\ drive, even on systems that do not have Internet Information Services (IIS) installed.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
  • Hundred Points
Reactions: rashmi, oldschool, lokamoka820 and 2 others
lokamoka820

lokamoka820

Level 27
Verified
Well-known
Mar 1, 2024
1,648
SeriousHoax said:
It did this on mine too and I deleted that folder after searching online. Now I saw this article and realized that it happened to some other users too. It's not a problem, just odd
www.bleepingcomputer.com

Windows 11 April update unexpectedly creates new 'inetpub' folder

Microsoft's April 2025 Patch Tuesday updates are strangely creating an empty "inetpub" folder in the root of the C:\ drive, even on systems that do not have Internet Information Services (IIS) installed.
www.bleepingcomputer.com www.bleepingcomputer.com
Click to expand...
It happened to me too.
 
  • Like
Reactions: rashmi, SeriousHoax and oldschool
Jan Willy

Jan Willy

Level 13
Verified
Top Poster
Well-known
Jul 5, 2019
617
On my C-drive the folder inetpub was created 19-01-2025. It has something to do with Internet Information Services (IIS).
 
  • Like
Reactions: rashmi
SeriousHoax

SeriousHoax

Level 51
Verified
Top Poster
Well-known
Mar 16, 2019
4,038
WTH is wrong with Microsoft? Now they are saying that it is intentional and should not be removed yet it was not mentioned in the changelog 😑
Screenshot_2025-04-11-03-32-45-73_0b2fce7a16bf2b728d6ffa28c8d60efb.jpg
 
  • Like
Reactions: TairikuOkami, nicolaasjan and rashmi
nicolaasjan

nicolaasjan

Level 5
Verified
Well-known
May 29, 2023
239
Security Update Guide - Microsoft Security Response Center

After installing the updates listed in the Security Updates table for your operating system, a new %systemdrive%\inetpub folder will be created on your device. This folder should not be deleted regardless of whether Internet Information Services (IIS) is active on the target device. This behavior is part of changes that increase protection and does not require any action from IT admins and end users.
Click to expand...
 
  • +Reputation
  • Like
Reactions: SeriousHoax and brambedkar59
brambedkar59

brambedkar59

Level 33
Verified
Top Poster
Well-known
Apr 16, 2017
2,246
I can tell the author of this article deleted this folder as well. 🤣
There’s no need to panic if you’ve already removed the %systemdrive%\inetpub folder assuming it to be an issue with Windows 11. After all, it was Microsoft’s fault that the changes in the release notes were not correctly clarified.
Click to expand...
www.windowslatest.com

Windows 11: Microsoft warns do not delete inetpub folder after causing confusion

Microsoft has warned that users must not delete “inetpub” folder on Windows 11 after the April 2025 Update created it. This folder was initially assumed to be a bug in Windows 11 KB5055523 and other April 2025 cumulative updates, including Windows 10. It turns out it’s an intentional change, but...
www.windowslatest.com www.windowslatest.com
 
  • Like
  • HaHa
Reactions: SeriousHoax, nicolaasjan and Gandalf_The_Grey
Gandalf_The_Grey

Gandalf_The_Grey

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,849
brambedkar59 said:
I can tell the author of this article deleted this folder as well. 🤣

www.windowslatest.com

Windows 11: Microsoft warns do not delete inetpub folder after causing confusion

Microsoft has warned that users must not delete “inetpub” folder on Windows 11 after the April 2025 Update created it. This folder was initially assumed to be a bug in Windows 11 KB5055523 and other April 2025 cumulative updates, including Windows 10. It turns out it’s an intentional change, but...
www.windowslatest.com www.windowslatest.com
Click to expand...
What to do if you removed the “inetpub” folder assuming it to be a bug?
There’s no need to panic if you’ve already removed the %systemdrive%\inetpub folder assuming it to be an issue with Windows 11. After all, it was Microsoft’s fault that the changes in the release notes were not correctly clarified.

Regardless, if you removed the folder, we strongly recommend you reinstall the April 2025 updates.

To do this, you need to uninstall the April 2025 Update from Settings, reboot, check for updates again, and reinstall the update. In our tests, this brings back the folder and applies the security patch correctly.

If you don’t want to go through the hassle, wait for the next cumulative update, which will also include the folder.
Click to expand...
 
  • Like
Reactions: SeriousHoax, nicolaasjan, brambedkar59 and 1 other person
silversurfer

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,739
Microsoft confirms Windows Hello issues in latest Windows 11 updates
If you have a Windows Hello-compatible device with facial recognition, such as the Surface Pro 11 or a third-party webcam with an IR scanner, you might encounter a problem with biometric authentication after installing this month's security updates for Windows 11. In the support document for KB5055523, which was released on April 8, Microsoft acknowledged issues with Windows Hello.

According to Microsoft, Windows Hello facial recognition or PIN stops working after performing a system reset while keeping local files. Once back at the login screen, affected systems show an error message claiming the user's PIN is not available or "something went wrong with face setup."

Here is the full description:
We're aware of an edge case of Windows Hello issue affecting devices with specific security features enabled. After installing this update and performing a Push button reset or Reset this PC from Settings > System > Recovery and selecting Keep my Files and Local install, some users might be unable to login to their Windows services using Windows Hello facial recognition or PIN. Users might observe a Windows Hello Message saying "Something happened and your PIN isn't available. Click to set up your PIN again" or "Sorry something went wrong with face setup".
Click to expand...
Click to expand...
www.neowin.net

Microsoft confirms Windows Hello issues in latest Windows 11 updates

Recent Windows 11 updates are breaking Windows Hello face sign-in, and Microsoft is now aware of the problem.
www.neowin.net www.neowin.net
 
  • Hundred Points
  • Wow
  • Sad
Reactions: harlan4096, Morro and Gandalf_The_Grey
silversurfer

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,739

Windows: Empty inetpub folder creates a new security problem​

When Microsoft released the April 2025 security updates for Windows, users from all over the world started to notice that Microsoft's update created an empty folder in the main drive called inetpub.

This led to confusion, as Microsoft was tight lipped initially about the presence of the folder. The official release notes did not include any information about it. Shortly thereafter, Microsoft revealed that it created the folder on purpose to "increase protection". Users and administrators were encouraged to keep the folder and not tinker with it.

Background information: Microsoft created the folder as a direct response to CVE-2025–21204, which allows attackers to use symlinks to elevate privileges.

It turns out now that the creation of the folder may very well be used by cybercriminals for nefarious purposes.

Security researcher Kevin Beaumont shared information about the issue on Medium. Beaumont discovered that Microsoft's fix "introduced a denial of service vulnerability in the Windows servicing stack".

The details:
  • Regular users may abuse the issue to stop all Windows security updates.
  • It takes a single command to from a regular (non-elevated) prompt to abuse the issue.
All that is required is to create a new symbolic link between the inetpub folder and an application like notepad. Symbolic links do not require elevation, which means that attackers do not need to gain elevated access to a system to block future security updates on it.
Click to expand...
www.ghacks.net

Windows: Empty inetpub folder creates a new security problem - gHacks Tech News

A security researcher discovered that cybercriminals may abuse the newly created inetpub folder by Windows Updates to block the installation of tuture updates.
www.ghacks.net www.ghacks.net
 
  • Like
Reactions: Gandalf_The_Grey, harlan4096, brambedkar59 and 2 others
SeriousHoax

SeriousHoax

Level 51
Verified
Top Poster
Well-known
Mar 16, 2019
4,038
  • Hundred Points
  • Like
Reactions: Gandalf_The_Grey, brambedkar59 and silversurfer
Sorrento

Sorrento

Level 14
Verified
Top Poster
Well-known
Dec 7, 2021
692
I did wonder what that new folder was, it would be at the very least for MS to let informed users know why a new folder appears from nowhere? Crazy!
(when one door opens another door slams)
 
Morro

Morro

Level 20
Verified
Top Poster
Well-known
Jul 8, 2012
984
So does this mean I should hold updating Windows a bit longer than those two weeks I mentioned in my previous post? Or is it safe enough to resume updates?
 

Similar threads

silversurfer
    • Like
    • +Reputation
New Update Windows 11 Patch Tuesday February 2025 (KB5051987, KB5051989)
Replies
26
Views
2,664
Windows 11
annaegorov
annaegorov
silversurfer
    • Like
    • Thanks
    • Applause
New Update Windows 11 Patch Tuesday January 2025 (KB5050009, KB5050021)
Replies
6
Views
920
Windows 11
Jonny Quest
Jonny Quest
silversurfer
    • Like
    • +Reputation
    • Applause
New Update Windows 11 Patch Tuesday March 2025 (KB5053598, KB5053602)
Replies
0
Views
543
Windows 11
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top