I was hacked using Brave

OK.

Try to keep this brief. I was using PIA VPN and Brave Browser and the last couple months the browser kept asking me to update. Well last night they did it. They waited for me to update and sniffed the packets. They got my Lastpass and email accounts. I am currently recovering. They would have had to push an update not from Brave servers but from somewhere else and grabbed the goodies. Anyone with similar please chime in. Would like to get more secure. They must have sniffed my YubiKey for 2 factor. Just FYI.