In what is being called a systematic targeting of large health care organizations, pharmaceutical companies, and IT companies and equipment manufacturers that service the health care industry, Symantec has reported that a new hacking group, dubbed “Orangeworm,” is carefully selecting its targets and strategy prior to launching an attack.

According to Symantec, the hackers have been targeting victims since 2015, and have installed malware onto their victims’ systems that allows them to access the networks remotely.

The malware has been located on MRI machines, X-ray machines, and machines used by patients to complete consent forms. It is believed that the hacking is designed to steal trade secrets as opposed to personal information.