My steam account got compromised and I have no idea how.
I have 2FA through my mobile, I checked the logins and I didn't notice any suspicious activities,
There were only two login locations. My PC and my mobile device. I logged out of every device and changed my password and email just to be sure.

The reason I found out is because I've gotten an email that someone had accepted a gift "Don't starve together" I didn't recognize the user and directly reported him. I don't have any money in my steam wallet and no money was removed from my bank account (I don't save my bank account numbers anywhere but I checked just to be sure. I also don't know how the gift was made when I am not missing any money)

After that I got 131 email talking about "You've given a screenshot an award" / ''You've given a Community profile an award''

I've reported the users that were mentioned in the emails.
I have checked for malware with Malwarebytes I didn't get any alerts on that.

Can anyone tell me how this could have happened so I can prevent this in the future.
It spooks me that someone can have access to my account with multiple verification tools...
I don't know what to do,