I'm a little confused by who is supposed to be caving to the threat here. It's a paid database, so I assume that Thompson-Reuters/Refinitiv aren't thrilled; but it was apparently stolen from one of their customers, not directly from them, so their reputation for security competence isn't really affected; and I suspect that most of the people paying for access to this sort of database need something authoritative that ticks the "I'm really trying to know my customer, really" box when feds or auditors come around; so even a reasonably fresh and reasonably large leak is still of limited value("So, you decided to reduce costs by basing your compliance efforts on data of unknown completeness, potentially subject to unknown modifications, sourced from unknown criminals? Very interesting...") as an alternative to continuing to subscribe.
If anything, it seems like its release would be largely positive: probably lots of interesting leads to be followed up, both with regard to what the creepy data broker types know and the things they know about the people they consider relevant, by people who are in no position to afford access normally(if it's even something you can just purchase if your money is green enough; rather than being offered specifically to potential customers known to be in financial services; not just anyone with a checkbook).