I was reading this ars technica article that talks about how some are angered by LulzSec releasing a sample of their Sony passwords. They quoted one Twitter user who basically told them to not punish the users for Sony’s sake.
But here’s the problem with that argument: those one million accounts accounts have already been hacked, and at least a few people already have that information. Making the list public forces Sony and the users to take this seriously. If the list is not made public it is too easy to get lazy about it.
Hiding the passwords really doesn’t protect those users one bit whereas making this stuff public will bring a lot of attention to the matter.

Yubikey Token        LastPass password manager