The city of Atlanta detailed the overall costs to remediate issues resulting from a ransomware attack that occurred in March and harden security for the future, and the bill adds up to more than $5 million.

The Atlanta ransomware attack occurred on March 22 and shut down several of the city's departments, though police, fire and emergency services departments were not affected. The city government notably didn't give workers the OK to turn systems back on until five days after the ransomware attack occurred.

The city government emergency procurements website details the ongoing costs to recover from the Atlanta ransomware attack. News outlets first began covering these costs on April 23, and at that time the total costs were just over $2.3 million, but since then the city of Atlanta has paid another seven contracts, including one to Microsoft for "Cybersecurity Network Architects Staff Augmentation" for more than $1.3 million.

Other costs include $650,000 to Secureworks for "emergency incident response services," $730,000 to Fyrsoft, a Microsoft managed partner specializing in cloud and data center work, and $600,000 to the Ernst & Young law firm for cyber incident response "advisory services."

Currently, the total costs listed on the procurements website are more than $5 million. As of this post the official city website dedicated to providing updates on the attack still includes this answer to the question of how long it will take to fix the issues from the attack:

"Our cross-functional incident response team is looking into this matter and working around-the-clock. It would be inappropriate to speculate on when this matter will be fixed, but we are committed to resolution."