Criminals are exploiting an eBay security weakness that could result in shoppers getting redirected to a malicious webpage that tries to steal bank account information. eBay acknowledges that the site is vulnerable to so-called cross-site scripting (XSS) XSS is a method of injecting malicious code into a webpage through the fields in which users type information. Attackers will use the technique to exploit the Javascript and Flash eBay lets sellers write to make their stores more attractive to buyers. Researchers say users of the site should look carefully at the pages they are directed to.”]