The "private key" is literally that: It should remain private. If somebody gets your private key, they can technically issue anything in your name (depending for what it was intended). In a simple communication channel, they can make others believe that they are you. They can sign malicious software in your name and nobody will doubt that you made it. The damage that can be done is immense, depending on for what the private key is actually used in this context.