The SolarWinds backdoor in Danmarks Nationalbank was open for 7 months, before the attack was detected by coincidence by the American IT-security company FireEye

https://www.bleepingcomputer.com/news/security/russian-hackers-had-months-long-access-to-denmarks-central-bank/