Before 6.2:
The password is encrypted using a non standard alghorithm.
It is not possible to change the alghorithm used for encrypting passwords at the moment.moment.
After 6.2:
We use state of the art standard algorithms to encrypt passwords. For user passwords bcrypt is used to hash the password. For passwords used in external database, web services etc. we use AES.