TL;DR: Last Pass is broken. All passwords at the time of the breach were taken. They also got internal secrets from a laptop and can now probably throw computational power at anything they want to decrypt.
Switch. Do not use. Change everything you have if you were using it. Treat everything as breached.
doesn't storing the password with the mfa thing kind of defeat the purpose?
Your master password is in your head, your 2fa should be on your phone or another device