Do you switch on all features in web security for lower risk sites? If you leave it to high risk only, are you comfortable with the potential risks of a well known site being compromised and not inspected?
We're seeing a lot of complaints coming as users have no filtering currently and don't have delays when accessing mainstream sites.