People look at this and think "dumb politicians" but that's not the right conclusion. The security teams responsible for protecting them are to blame, yes, even for poor password choices and drarkweb leaks.
Politicians don’t have electronic security teams. In a political campaign office, a politician will be very lucky to have one volunteer who understands computer security who is then responsible for herding a dozen staff and a couple hundred volunteers who don’t understand why they should care about security.