System owners of a web enabled application are today forced to invest in system security. Malicious system access is possible by stolen browser cookies and sophisticated phishing attacks and thus post a significant threat to organizations today. In this session Tore Nestenius elaborates on how to protect cookie session, detect hijacked cookies and strengthen user login security through two-factor authentication (2FA). Tore also shares practical strategies to safeguard user logins and user sessions against these threats.