Facebook Asking New Users for their Email Passwords as VerificationByBill Toulas-April 3 2019.1094 The site says that this information is not retained but has been done for telephone numbers before. Now Facebook has decided to remove the specific method of verification from its website. This might be a piece scheduled for April 1 but it is sadly not. As a security researcher and software developer (e-sushi) found a few days ago Facebook has started to ask for passwords from external email accounts belonging to new users alleging protection and authentication issues. This filthy request is being sent to users who are going through the process of signing up for the first time with the associated message on the world’s most popular social media platform, telling them that this is a one-time verification phase and that they will be able to automatically login in future. Hi @facebook#infosecpic.twitter.com / Xl2Jfk122l e-sushi (@originalesushi) March 31, 2019 Clearly many of the people who wanted to sign up with Facebook felt it was all right to trust the tech giant irrespective of the platform’s long record of bad approaches to privacy and security. Facebook says they don’t store such passwords anyway and actually offer alternate authentication methods for users who don’t want to encrypt their addresses. New users clicking on the “Need help? “You may have a code sent to your phone or a verification connection sent to your email in the corner of the page. Clicking the “Want help” but? “Isn’t this an obvious way to bypass the password handover stage and a name like” Alternative Methods? “It would be a lot simpler. As this news has brought another flood of backlash for Facebook, they have decided to announce that they will once and for all retract the particular method of verification. As they wrote: “We agree that the password authentication method is not the best way to do this, so we will stop offering it.”