Alabama Crimson Tide fans need to check their bank statements.

The fans who bought items from www.bamastuff.com between Aug. 1, 2009, and Jan. 16, 2012, are being told to contact their banks for possible illegal and unauthorized us of their credit cards, according to an article on www.al.com.

The website has sent an email notification to inform customers about the breach in its database, which the company’s IT director David H. Jones discovered.

From the article, the email says, “information including customers’ names, email addresses, billing and shipping addresses, telephone numbers, credit card information and/or a cryptographically scrambled passwords (not the actual password) could have been stolen.”

To protect against future theft, Jones said the company has upgraded and installed various security software to monitor activity, the article said.