Someone logged into my account and changed my profile, I was able to recover by adding 2 factor authentication BEFORE changing my password

Edit: I did not go the submit ID/license route for fear of being locked out due to discrepancies between name changes and recent login history. Not giving LinkedIn my ID in the event this is a larger data breach.

I think this worked because they would then need access to my authenticator app after they've received notification I changed the password. So essentially they couldn't quickly change the password and lock me out. I received notifications of them trying to get back in.

What's strange is they changed my profile pic to an attractive woman, added some stupid bio, deleted my work history, started following random accounts, and messaged one random dude. You'd think they'd want to spam from my real account to my real connections.