the list is from the portions that are published on pastebin
This is the accumulated list so far (6 postings) http://belsec.skynetblogs.be/hacked-dropbox-accounts-the-list-of-known-hacked-accounts.html they have already been downloaded more than 50.000 times so you can expect a lot of attacks against those addresses
the hackers are publishing portions of the database from time to time depending if someone gives them a bitcoin or not (this is the first time that the crimecommunity can finance a dataleakage)
"MORE BITCOIN = MORE ACCOUNTS PUBLISHED ON PASTEBIN
I figure being locked out of your account is better than script kiddies snooping through your files.
Don't donate to the script kiddy's bitcoin address, as the passwords leaked will not be valid for long.
Password changed: Benitesleo@hotmail.com
Password changed: firstname.lastname@example.org
Password changed: Benitez_ja@hotmail.com
Dropbox says that third applications are responsable which is the same issue we had with snapchat. You are as secure as the connected services are ......
They also said that they are asking those users to change their password ? So 7 million users have to change their password all of a sudden ?