This is of course, poppycock, the actions of the hacker do not mean that it's open season on Zhou Tong, and Zhou Tong's own discussion of his business to not mean all aspects of it can be revealed to the world.
If I were to hack your e-mail address and use it to commit a crime, that does not mean that the company that hosts it can now publish the contents of the account for the world to see. You still have an agreement with them no matter what I do to you.
AurumXchange didn't publish any contents from the e-mail address (obviously they didn't know its password), zhou was doing that. And they didn't discuss or reveal all aspects of Zhou's business, only two things: that he had an LR order with them and that he was connected to the e-mail address. They kept all other aspects of his order private: his singapore bank account, his LR account (zhou was the one who revealed his own LR account), the e-mail address zhou used there, etc.
They were in a tough position and would have much preferred for Bitcoinica LP to initiate some official court proceedings, but that didn't happen so they disclosed it publicly as they said. Maybe they could have given zhou a 12-hour heads up in the case he were a victim, but there was also sufficient reason not to. I'm glad they did, because it did lead to 15k BTC being returned. Hopefully it will be more.
At this point I just really hope he can get the rest of our money back. If not, then I hope zhou reveals Chen Jianhai's personal information (its probably a common name) as he is threatening.
And its really a shame that zhou didn't have offsite backups of the account database. A shame that Bitcoinica Consultancy had an insecure e-mail. A real shame that Patrick Strateman never changed the LastPass password. And a real god-damn shame that he, Donald, and Amir are walking away from Bitcoinica Consultancy LP. Despite their two major fuck-ups, I hope they come back so that Bitcoinica LP is not forced into liquidation "receivership". Customers have already filed their claims and they worked for months sorting the fraudulent claims from the valid ones. At the very least, I hope they turn over their work so far.