A breach at Penn State launched an investigation that usernames and passwords from more than 18,000 people may have been accessed.
The FBI first alerted the university of the cyberattack in November 2014. The school then hired security firm FireEye and its cybersecurity forensic unit Mandiant to investigate the breach. It was through this investigation that Penn State discovered at least one of the two attacks was based in China.