The florists associated with Incapsula now known as Imperva, suffered a ransomware attack in the Valentine's week of 2016 which resulted in a huge loss of revenue.
ALl of the 34 floristes of Inperva were truck by targeted distributed denial-of-service (DDoS) attacks while one of the website crashed after its content delivery network (CDN) interpreted the attack traffic as legitimate user sessions and routed the traffic through the origin server.
One of them also received a ransom demand for restoring the access to the website, however, Imperva immediately helped them get their business online and restore all the access.
Source: https://grahamcluley.com/florists-hit-ddos-valentine/
TPRM report: https://scoringcyber.rankiteo.com/company/imperva
"id": "imp141910522",
"linkid": "imperva",
"type": "Ransomware",
"date": "02/2016",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Floristry',
'name': 'Imperva Florists',
'size': '34 florists',
'type': 'Business'}],
'attack_vector': ['DDoS', 'Ransomware'],
'date_detected': 'February 2016',
'description': 'Incapsula (now Imperva) florists suffered a ransomware attack '
"during Valentine's week of 2016, resulting in significant "
'revenue loss. All 34 florists were hit by targeted DDoS '
'attacks, with one website crashing due to attack traffic '
'being routed through the origin server. One florist received '
'a ransom demand, but Imperva helped restore access and get '
'the business back online.',
'impact': {'downtime': 'Significant',
'financial_loss': 'Significant',
'operational_impact': 'High',
'revenue_loss': 'Significant',
'systems_affected': ['Websites', 'CDN']},
'motivation': 'Financial Gain',
'ransomware': {'ransom_demanded': 'Yes'},
'response': {'remediation_measures': 'Restored access and got the business '
'back online',
'third_party_assistance': 'Imperva'},
'title': 'Ransomware and DDoS Attack on Imperva Florists',
'type': ['Ransomware', 'DDoS']}