I have very high confidence that every application on my computer has some gaping undiscovered vulnerability in it. It is the nature of software to be accidentally insecure.
Dropping Zoom based on their security mistake would make sense if one of two things was true:
1. The vulnerability was introduced intentionally
2. The vulnerability was introduced due to a persistent culture of negligence
I have seen no evidence that either of those are the case. Someone at Zoom made a mistake. Granted, it was a big mistake. I've made a few of those in my career too.
The way that they introduced the persistently resident hidden web cam software, and the way that it had basically no authentication on it at all, does tell me that they have a software development culture of negligence.
https://www.google.com/search?client=firefox-b-1-d&q=zoom+ma...
It leaves me with very little confidence that the Zoom client for Windows doesn't have some gaping undiscovered vulnerability in it.