[mlazowik]

Anyone on the path between your server and clients can change the content however they want. Inject ads, mining scripts, redirect to a phishing website, try to push a virus to your client etc.

There are even ISPs that do that: https://security.stackexchange.com/questions/157828/my-isp-b...

https://thenextweb.com/insights/2017/12/11/comcast-continues...