According to your story, my friend, it's obvious that a hacker got into your blockchain.com account, that's because your 2FA is disabled on this platform, that's why you should be surprised. And you don't seem to be aware of this matter because you don't know. There is a lack of experience here in the crypto industry.
And you're right, this is a lesson learned from you, my friend, and you did the right thing now that you're using Electrum, as long as you always update electrum when you see my new version because if you don't update it, the electrum wallet can be compromised when the hacker sees or peeks at it.
No, that is not right, my 2fa was always turned on for extra security, this is one of my main points if you read my posts fully is how was it switched off because it was not me, that was my trigger when I found out