A major security exploit can be used to suspend your WhatsApp account by a bad actor without your permission. The only information that the attacker needs is your phone number. According to Forbes, the attacker's first step is to install WhatsApp on a new phone using your phone number to activate the service.
What happens next is that WhatsApp, using two factor authorization (2FA), tries to verify that it is you who just set up the new WhatsApp service on your phone. Since it isn't you, this procedure will fail over and over again and if done multiple times, it results in your account log-in being suspended for 12 hours. For the next step, the attacker sends an email to WhatsApp stating that his phone (which is really your handset) has been stolen or lost and asks that the WhatsApp account associated with the number be shut down.
Following this request, WhatsApp sends an email confirming that the account has been suspended without asking the attacker for any kind of information that might prove that the request to suspend the account came from the legitimate owner of said account. This process can be repeated numerous times which basically locks you out of your WhatsApp account.
A pair of security researchers named Luis Márquez Carpintero and Ernesto Canales Pereña completed a proof of concept that showed how this attack can block you from using your WhatsApp account. What it can't do is give bad actors a way to enter your account and your confidential messages remain confidential. WhatsApp hasn't said anything yet about plugging the gaping security hole.