This is a hugely embarrassing situation for the Swedish government.
The leak itself is indicative of poor security practises, with the entire database being emailed in clear text; compounded by challenges in securing third party supply chains.
It also gives privacy advocates more reason to be concerned where governments are seeking to expand surveillance powers, as this breach shows, governments are incapable of keeping their biggest of secrets secure.
The story goes back to 2015, when Sweden's transport agency awarded IBM a contract to manage its databases and networks. The databases pushed to the IBM cloud covered every vehicle in the country – including police and military registrations, plus details of individuals on witness protection programs. Individuals in the database include members of the military, including members of special forces units whose identity and photographs are supposed to be secret.