A Chinese security group, Qihoo 360,  has discovered malware using a 0-day flaw in Internet Explorer’s engine.  This flaw can be exploited in all versions of IE and any applications (Outlook) that renders HTML with IE.  Microsoft hasn’t made any comment yet.  Stop using IE until it’s patched.  Edge is not affected.