I am not sure how my assets were stolen, but I believe it was not done by the ones beside me through my laptop, but by some hacker that got the private key from Internet.
firstly security base on good habits, I should not put so much assets in a bot account which is daily used in a laptop where everything is done.
I don't think the 2FA solution is helpful in this scenario, if hacker get your private key, you lose everything, nothing can help you.
maybe only multisig and even hard/cold wallet can really help to protect the accounts with huge amount of assets?