I gotta be honest, if I were the target audience, this would be a turn off for me. A confirmation re-type is no big deal and is kind of expected, as it's the norm. Also it's just not secure. I don't know about you, but I often have to type in my password in front of people. Or during presentations. Maybe you'll say the login field using type=password (I admit I didn't look), but I'd say that it is still concerning.

Not sure what is the reason behind it. I would suggest to use regular password field and required email field to confirm so they can recover account via email, or no need confirm email since it is visible to user.

Of course you cant have both nice UX and good security, seem like you pick UX more than security.