@cwebber the most likely culprit is one of the many cybercrime-for-hire sites. Most likely for advertising, as these types of businesses often attack highly visible sites for free publicity, generally with very dubious justifications just like this. But it's equally plausible that someone bored just had a few hundred dollars burning a hole in their pocket. This sort of thing really isn't that expensive or hard to run and well within the capabilities of a run of the mill cybercrime shop.
@nota but they didn't state who they are, how would it be advertising?