April 12, 2016
GRU hackers use stolen credentials stolen after April 6, 2016 via spearphishing to breach DCCC. They propagate X-Agent malware on at least 10 computers in the DCCC network and continued to observe and steal passwords.[i]
[i] U.S. v. Viktor Borisovich Netyksho, et al (1:18-cr-215, District of Columbia) https://www.justice.gov/file/1080281/download