This document provides mitigation measures for a potential compromise of RSA SecurID two-factor authentication products. It recommends revoking non-essential remote access, establishing login failure thresholds, disabling remote access when not in use, implementing robust logging, and educating users about phishing and social engineering risks. Further measures include adding additional authentication factors, restricting access by IP/MAC, limiting concurrent logins, and applying defense-in-depth techniques. System administrators and end users are advised to take precautions such as strong PIN practices, physically protecting tokens, and being wary of unsolicited communications seeking access information.