SaaSを使うためソフトやハードを従業員が入れて、そのハードやソフトが内部ネットワークを外部からスキャンしてしまう可能性があるって話。

Comodo introduces vulnerability scanning for internal networks in the cloud with the newest release of its HackerGuardian.

Previously, internal network scans required dedicated hardware, run by an onsite employee. Now businesses can run remote scans of their internal and external networks using the same software. A lightweight bootable agent installed on one of the local network nodes can be activated by an employee who may be located in another state, or even on another continent.

The product's Internal Scanning feature allows PCI DSS-compliant merchants to run vulnerability scans on computers located on a local area network. These computers are typically 'inside' the company's private network and are protected by a perimeter firewall or other network security device. In order to run an internal scan, the administrator must first run the internal scanning agent on the local network.

SaaS vulnerability scanning for internal networks - Help Net Security