Oh my oh my, if I would have to pick just one of the worst deal-a-day websites, it will have to be "Deadlydeal".
Aside from all their products being ordered from a different deal website for more then they charge after customers have ordered, removing links in the comments to cheaper prices found elsewhere. The common site they order from is dealextreme.com, they add a shipping charge and raise the price, then the products usually come from that company as well. Shipped from out of the country.
The long version really is long, and if any mods have a problem with the level of information that is said, please remove it. Nothing listed below was done with negative intentions in mind, perhaps I may be viewed as in the wrong, but as I have not done anything against them that has caused harm, except warn others, I do not feel I am in the wrong.
First a little information about myself to lead into the reasons as to why I pick that website. I do many things online, play games, manage web servers, manage a few private game servers, I do freelance programming, web languages as well as various OS based languages, and on various occasions, security auditing. The last being just a hobby of mine done usually for myself or friends.
With the small introduction out of the way, the story will begin. Company names have not been changed, but various details have been left out to protect their customer base (why? I don't know).
Short Version.
Basically, I had some issues with orders purchased, found some security flaws and notified them as well as told them how to fix them, was received positively at first, then told off down the road. The problems are not fixed to this day.
Long Version.
Back in February / March I came across their site when they were offering a random mystery deal. I of course after looking over their past products and prices, proceeded to order one. I was billed immediately, and assured that it would be shipped shortly, over two weeks later, I had not heard a thing about shipping details nothing. I proceeded to contact them only to be assured that it would be shipped out promptly, that their was an issue with all the orders. Another week or so passed with no news, so I proceeded to contact them again, where I was told it would be shipped out tomorrow with information sent regarding the shipping. A few days later, no information, so I filed a PayPal dispute to get my money returned, after doing such I received the fastest reply ever, telling me that they will refund the full amount, which they did. I never received the product, even tho I was told a few days prior it would be shipped out, which shows that it was not shipped out the following day as I was told.
During the above mentioned time, while browsing their site, I noticed some minor coding issues with their site and upon further inspection I came across some rather hazardous security related issues that if exploited for malicious intentions could lead to sensitive customer data being revealed.
I proceeded to do the right thing in my opinion, I contacted their "bug report" email address listed and explained I had found some issues and would like to discuss with them how to resolve it. I received a reply some days later with a brief message saying "Is this something you can do? What are your fees? ". I replied with an explanation on the problem, as well as how it is most likely coded, and a solution on how to fix, along with the code required for the solution. They had everything needed to fix that particular problem. I also noted that anything more specific regarding the issue I would need to see their web files to be sure. The following day I sent them an email with an update with a much more serious problem that was discovered that would impact the entire site if discovered and exploited. I received a reply thanking me for the information, asking if I did this for a living, or had a website of my own and would be interested in free advertising in exchange for it being fixed.
As I do not have a website that is centered around merchandising or security, I had no need for advertising from their site. I responding saying so, with some images of the nature of the data that could be exploited, and said that they could simply send me something, anything they wanted if they wanted to show their appreciation for the assistance. I stated that they did not need to do anything if they did not want to, that i would help regardless. The response was one asking for a number to contact me for business purposes, which I did supply, and then never anything back from them, so I sent a followup weeks later and bluntly received a message saying that they could not "trust" me to fix it, which I responded by telling them that they already had the means and the code to fix it, that they could do it themselves. I received another message back with nothing important, and sent them a final message saying that I would leave their site for good and best of luck.
To this day the problem has not been fixed, I have removed all of my personal information from the site and suggest everybody else to do the same.