That’s about what I read it as, but I am not familiar with RA stuff, so there could be more to it.
OTOH if it was simply a “If I can connect to your PLC via the internet, then I can modify it” type of thing, then I would not expect such a high level advisory