Home/Books/Sarah and the Malware Fairy
//Children's cybersecurity book

Sarah and the Malware Fairy

A children's cybersecurity book that teaches kids about malware, passwords, and safe downloading the way a bedtime story teaches anything: gently, and so it sticks.

By Sajed Khan/Published 2021/Ages 5 to 10
Get it on Amazon →All retailers ↓

A picture book on online safety for kids, by cybersecurity executive Sajed Khan

Sarah and the Malware Fairy book cover by Sajed Khan, a children's cybersecurity book

What the book is

Sarah and the Malware Fairy is a children's cybersecurity book by Sajed Khan. It introduces young readers to online safety, malware, ransomware, passwords, and the simple habit of thinking before they click or download, all through a story instead of a lecture. It is written for children roughly five to ten years old, and for the parents and teachers who hand them a device every single day.

Why it was written: a lockdown, a Chromebook, and a record year for malware

The book was written in 2021, during the COVID-19 lockdown, when Sajed and his daughters were home together and school had moved onto a screen. Almost overnight, every child in the house, and across the country, was living on a Chromebook: joining class, downloading apps and games, and clicking links from friends with no thought to security at all.

2021 was also one of the worst years on record for ransomware and malware. As a cybersecurity leader, Sajed spent his days defending large organizations from exactly the attacks his kids were wandering into at the kitchen table. The people with the most screen time and the least training were the children. So he did what a parent does. He turned the lesson into a story his daughters wanted to hear.

The characters

The young heroines were inspired by his daughters, Sophia and Maryam. Their companion is a friendly beaver, a small nod to the family's Canadian roots and one of Canada's most beloved mascots. Together they meet the Malware Fairy, the mischievous character who stands in for everything that sneaks onto a device when nobody is paying attention. The result is a cyber safety story that feels like a fairy tale, not a warning label.

What it teaches

Without ever leaning on fear, the book helps children learn to:

  • Notice when a download, link, or pop-up looks suspicious.
  • Understand what malware and ransomware are, in words a child can actually hold onto.
  • Use strong passwords and keep them private.
  • Stop and tell a trusted adult when something online feels wrong.
  • Treat their device, and their information, as something worth protecting.

The goal is digital responsibility as a habit, not a one-time talk.

Why a CISO wrote a children's book

We teach children to look both ways before crossing the street. Then we hand them a connected device and teach them almost nothing about the street they actually live on. Sarah and the Malware Fairy is Sajed's answer to that gap: start early, start gently, and make safety a story a child wants to hear again.

About the author

Sajed Khan is a CISO-level cybersecurity and risk executive, inventor, and author with more than 25 years across enterprise, government, healthcare, finance, and technology. He was named a Top Global CISO by Cyber Defense Magazine in 2023, a Computerworld Premier 100 Technology Leader, and a CIO 100 honoree, and he is a co-inventor on a granted U.S. AI patent in medical imaging. Sarah and the Malware Fairy is his cybersecurity book for the youngest users of all. You can read the story behind the book or learn more about Sajed.

//Where to buy
Amazon →Target →Walmart →Better World Books →DirectTextbook →

FAQ

What is Sarah and the Malware Fairy about?

It is a children's cybersecurity book by Sajed Khan that teaches kids about malware, ransomware, passwords, and safe downloading through a friendly story rather than fear, written for children roughly five to ten years old and the adults who raise and teach them.

Who wrote Sarah and the Malware Fairy?

Sajed Khan, a CISO-level cybersecurity and risk executive, inventor, and author, wrote it with his daughters during the 2021 COVID-19 lockdown.

Why was it written?

During the 2021 lockdown, children moved onto Chromebooks for school and were downloading apps and clicking links with no security awareness, in a record year for ransomware and malware. Sajed turned the lesson into a bedtime story so kids could learn online safety early and gently.

Who are the characters based on?

The young heroines were inspired by Sajed's daughters, Sophia and Maryam. Their companion is a friendly beaver, a nod to the family's Canadian roots, and the Malware Fairy represents the online threats kids need to learn to spot.

What age group is the book for?

It is written for children roughly five to ten years old, and for the parents, caregivers, and teachers who hand them a connected device every day.

Where can I buy Sarah and the Malware Fairy?

It is available in hardcover from Amazon, Target, Walmart, Better World Books, and DirectTextbook. See the Where to buy section above for direct links.