From a security angle, every vendor you use will have a security incident at some point in time given enough time. The real question is how the incident is handled. My issue with the “Microsoft had a security incident obviously you should Migrate away” mentality is that this could be any one of your vendors and if your philosophy/strategy is to ditch your vendors whenever a security incident happens you’re not going to get very far. Anything else like ditching Microsoft but not vendor X or using this to justify no more MS is inconsistent logic.
Edit:
Adding a quote from the OP’s linked blog on the subject:
> There is this well cited argument that cloud companies like Google, Apple, Amazon, Facebook, and you-name-it are able to protect your personal data much better than you are able to. They have military grade security restrictions, better backup methods, and are able to do this much cheaper.
> While this argument being absolutely true, people seem to forget that giving away your data to any third party is the root of many problems in the first place. It is not relevant to whom you are giving your data to.
>Let me explain…
So OP is arguing that this is why you can’t trust anybody not just MS. That’s a stance too, and perhaps for an incredibly security sensitive product the correct one, but definitely an impractical one for probably 98% of software products.
Edit:
Adding a quote from the OP’s linked blog on the subject:
> There is this well cited argument that cloud companies like Google, Apple, Amazon, Facebook, and you-name-it are able to protect your personal data much better than you are able to. They have military grade security restrictions, better backup methods, and are able to do this much cheaper.
> While this argument being absolutely true, people seem to forget that giving away your data to any third party is the root of many problems in the first place. It is not relevant to whom you are giving your data to.
>Let me explain…
So OP is arguing that this is why you can’t trust anybody not just MS. That’s a stance too, and perhaps for an incredibly security sensitive product the correct one, but definitely an impractical one for probably 98% of software products.