What's worse, after users provide their email password, Facebook appears to be harvesting users' contacts to store in its databases without their consent, according to Business Insider. Once users provide their email password, Facebook shows a pop-up that says the site is 'importing contacts.' After the practice was discovered, Facebook announced that it would no longer give the option of providing an email password to login. Facebook said only a 'small number of users' were asked to provide their email password upon logging in. Moreover, should Facebook ever experience a data breach the likes of those it has experienced previously, users email passwords could very well be up for grabs by hackers.

Source: Daily Mail April 03, 2019 16:13 UTC