Actually, although I haven’t read the original FTC article, it sounds like what they’re saying is completely accurate. It doesn’t sound like they said “Don’t use any VPN services, they’re all bad.” Rather, they warned users to choose their VPN providers carefully, which is something I also advise people to do.
Also, there is another danger that this MyCE article doesn’t mention: your web browser itself. Web browsers leak a ridiculous quantity of data to web servers. This data can make it easy for malicious web servers (Facebook, Google, etc.) to distinguish you from other users. You’ll probably want to harden your browser against browser fingerprinting techniques. On top of which, there are many users who might not know to clear things like browser cookies, browsing history, etc. Did I mention that your browser can leak your IP address, as well as the IP addresses of you DNS servers? The former can be solved by disabling WebRTC and browser plugins, while the latter can be solved by setting up your operating system up to use either your VPN provider’s DNS servers, or using some public DNS servers, such as these. (BTW, you should never use your ISP’s default DNS servers while you use a VPN anyway, since doing so allows your ISP to watch which websites you visit.)