I've been reading through this article:
https://learn.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-security-faq
and I have a question regarding this specific passage:
What are the implications of using the sleep or hibernate power management options?
BitLocker on operating system drives in its basic configuration (with a TPM but without other startup authentication) provides extra security for the hibernate mode. However, BitLocker provides greater security when it's configured to use another startup authentication factor (TPM+PIN, TPM+USB, or TPM+PIN+USB) with the hibernate mode. This method is more secure because returning from hibernation requires authentication. In sleep mode, the computer is vulnerable to direct memory access attacks, since unprotected data remains in RAM. Therefore, for improved security, it's recommended to disable sleep mode and to use TPM+PIN for the authentication method. Startup authentication can be configured by using Group Policy or Mobile Device Management with the BitLocker CSP.
It says sleep mode here. Does sleep mode mean all types of sleep modes (S0 = modern standby, S1, S2, S3, S4...) and the only "safe" alternative is disabling all sleep modes including hybrid sleep and modern standby and only keep hibernate and shutdown (in combination with bitlocker PIN/password at boot)?