Romita Majumdar reports:
… SonicWall Labs Threats research team found fake Aarogya Setu apps carrying spyware, which is capable of making phone calls, recording audio, send SMS, take pictures and record videos from the camera.
If the user deletes Aarogya Setu app from the device by long pressing the icon > uninstall method, only the legitimate app is removed, while the malicious app would still be available on the device. The only way to remove the malicious app is to remove it from settings > apps > uninstall. This trick has the potential to fool several users who are not vigilant.
Read more on Mint.