Facebook sessions is probably the easiest target for hijacking out there, because by default it runs on unsecured HTTP connection. If you want to force it to run on HTTPS you should go to your Account Settings -> Security -> Secure Browsing and turn it on.
Session hijacking is a way use that somebody is logged in and use their account without the need for actually knowing their login credentials.
Get one’s Facebook account on 4 easy steps:
Continue reading Facebook Sessions Hijacking