Re: Sounds like a social engineering attack
They do know when they're running low on cash, and presumably the other stuff. I just wonder if they're worried about esoteric (at least at the time they were designed) attacks like breaking into it to replace the hard drive so they don't check for it. I'm sure they'd receive an alert when it is rebooted as part of the hard drive swap, but they probably ignore those alerts because 99% of the time they are from power outages or other stuff that had nothing to do with the ATM.