A regional healthcare provider delayed applying RJ415680 due to change management freezes. Within 72 hours, attackers leveraged the vulnerability to access patient scheduling systems, resulting in a $1.2M remediation cost and regulatory fines under HIPAA.