Vulnerable..
Their argument is that Eugene's company is vulnerable to Russian government influence
Well they are..
Same way as Microsoft, Cisco, Symantec, Apple, Amazon, (do I really need to complete this list) are vulnerable to US government not only influence but active measures to infiltrate, backdoor and compromise. As long as we have secret courts and secret orders this is going to be an issue - but even if they didn't exist tradecraft renders these systems vulnerable. There's zero transparency in the industry is half the problem, everything is closely guarded secret. No obvious solutions here.
I don't think there's a good solution to this. Even open source can't truly save you from this stuff. If we all hide in our corners we're going to have a serious problem. Until the US government finds evidence of wrongdoing they should keep it to themselves.
I personally consider Romania as neutral ground as you can get and use Bitdefender - though I'm completely aware that they're open to Russian and US asset infiltration and therefore also won't help defend from either the US or Russian states. I consider it safest middle ground though.
I don't think anybody can go around, especially in government and military ops, pretending this isn't a possibility.