The BA hack seems like a bit of a strange example, considering they were hosting that JS themselves, not on a CDN or with a third party.

Regardless, it definitely shows the risks of someone being able to modify your assets, and perhaps the importance of monitoring them for unexpected changes.