Mobile banking Trojans: What can financial institutions do?