Two students have been arrested in connection to a fraudulent website that was providing access to the personal information of Jacksonville State University students and faculty. The first student was arrested last Wednesday.

Per a report from Alabama.com, the students, who remain unidentified, were is accused of stealing computer data from JSU that they then posted to the website.

The investigation is ongoing, but the university has reported that the website was the result of “a peripheral system with limited information being accessed on campus and placed online.” The compromised information was the result of an internal security violation and not the result of an external hack.

The unauthorized website, which gained attention last week, enabled users to access student ID photos, addresses, birth dates, phone numbers, student ID numbers, fraternity and sorority affiliation and other information. It also provided information on some former students, faculty and other staff.

JSU officials insist that there is still no evidence that Social Security numbers, credit cards or any other banking information has been compromised.