The method commonly used for securing user passwords in applications is hashing. Hashing transforms passwords into fixed-length strings of characters using a cryptographic algorithm, ensuring that the original passwords cannot be easily retrieved. This process protects user passwords from exposure in case of a data breach. Additionally, using salt, random data added to the hashing process, increases security by preventing attackers from using precomputed hash tables (rainbow tables) to crack passwords more easily.