Yes, you can rent a few dollar VPS from e.g. Hetzner (since Germany is mentioned in the blog post), and run a few wget commands in parallel in a loop on their 200MB setup file to easily reach 1TB a day.

For a company, this should definitely not be something to worry about. However, if I were able to single out individual IPs that are attacking me, then I would simply block them, report them (use the abuse form from the hoster of the attacking IP), and call it a day. This way, you can at least hope that the hoster will do something about it, either by kicking the hacker off its platform or, if it is some kind of service reflection attack, inform the victim to close the security loophole on their server and remove themselves from the botnet. If your attacks originate from a vast amount of different IPs from Russia and China, consider geoblocking.

The worst thing reporting an IP can do is increase your ranking on scamalitics.

Cgnat is becoming common on home internet. You can share an IP with up to 128 other people.

On Hetzner, you receive an abuse email with the directive to respond appropriately if your root server or VPS is involved in some kind of abuse related issue. In larger companies this happens quite frequently. I'm not sure what would happen if you ignore such email.

Hetzner will usually give you 24 hours to respond to abuse reports. Failure to do so will lead to locking of your server IP.

Just reply what you are sorry and you are fixing/fixed the issue. Till the next report.

scamalytics has nothing to do with a report to the tech-c or abuse-c email address in the WHOIS information.

That would cost you $200-$400 per day when hosting at Netlify or Vercel, which can quickly impact the bottom line of a startup or small business.