Like many posters above, I'm a little dismayed this made news. The title of the article is clickbait. We share passwords all the time at work -- heck, we have a password sharing application to make it easy to do so. But we only share passwords with people authorized to use them. If someone who wasn't authorized to use them is given one to access services, and is caught, then both that person and the person who gave the password to an unauthorized user broke the rules.
Dumbest quote: The question that legal scholars, groups such as the Electronic Frontier Foundation, and dissenting judge Stephen Reinhardt ask is an important one: Authorization from who?"
The question is asked as if it's a mystery fit for Sherlock Holmes. To pretty much everyone involved in every scenario...ever...they know who authorizes access. My house? Me. My company's financial records? CFO. My company's file server at work? Probably a bunch of people for different pieces of it (depending on the groups who are accessing: HR, Finance, Accounting, etc) and not the IT guys. Sure, the IT guys HAVE access (usually to the whole thing), and you could even say they hand out the keys. But someone authorizes them to do so.
So this is dumb. Guy is not authorized to access his old company's servers. Some friend who IS authorized gives him his password. Both should be penalized. And both are technically hackers as they are allowing unauthorized access to data.