Recently I found a very interesting article about session hijacking. It explains the session hijacking techniques. The conclusion is that you have to be careful, but with quality code you can prevent such an attack. Here is the link: http://resources.infosecinstitute.com/session-hijacking-cheat-sheet/
Totally unrelated to session hijacking, here is a video of what can hackers do these days