This is a phishing attempt first reported to CSULB ITS on November 4, 2014.
From: Bank of America 
Sent: Tuesday, November 04, 2014 3:26 AM
Subject: Recent suspicious activity on your online account
Email informs recipient that their Bank of America account had too many failed attempts at providing security questions. It requests recipients to open the attachment ("Validation Form.html") to begin a verification process.
Intent of the Email
The sender is either intending to load malware on to recipient computers or to obtain personal financial account information for their own malicious purposes.
Figure 1: Screenshot of the phishing email