Enable password hashing with salt & pepper
The passwords should be stored salted, peppered & hashed.
Preferably, information about the password hashing should be stored such that the hashing algorithm can easily be replaced later on without breaking the login credentials of older users.