Reporting: Link IPS, and Malware events to description
Link IPS and Malware events in reports to a online database with a description of the event if available.
It's always a lot of work to find out the reason of IPS events as "SHELLCODE x86 inc ecx NOOP" or to find a description of a Virus like "HTML/Infected.WebPage.Gen"
It would ease administrators lives to easily find out, which behavior the security events triggered or what they even mean.
We are planning to integrate more tightly with Sophos Labs, this feature will be possible during that project, in an as-yet to be determined release.
Agreed with other commenter; would like to see the SID in the IPS reports.
Also, in the Reporting section, please include the SIDs on the IPS reports (e.g. in v9.0 at Logging & Reporting -> Network Protection -> IPS... no SIDs shown, even if downloading the CSV file).