Chris explains that SiteKey is vulnerable to maninthemiddle attacks in which the phisher contacts Bank of Americas site and feeds the info to the target.