By Jonah Kaplan. CREATED Mar 27, 2014 - UPDATED: Mar 27, 2014
KENOSHA -- The school shut down the server, but it could be too late.
A computer engineer uncovered the virus, which infected the admissions server at University of Wisconsin-Parkside.
On Thursday the school notified approximately 15,000 students -- all those enrolled or even admitted to the college since 2010 -- of the potential exposure of personal data.
School officials announced the data potentially at risk includes names, addresses, telephone numbers, email addresses, and Social Security numbers.
The virus, however, appeared to have targeted credit card numbers, and that's something the school does not keep in its records.
Still, the data breach scared students like Stacee Thorell.
"If they're stealing information about you, they're going to use it in some way," Thorell, a freshman, tells TODAY'S TMJ4. "You don't really think about it until it's happened and then you scratch your head and you're like 'Whoa.'"
A UW-Parkside spokesman says the college is not aware of anyone specifically targeted in the data breach.
For more information, students can click here.