I don't think so. It makes perfectly sense that attackers store their maleware in OneDrive or S3 buckets to circumvent corporate firewalls.
Basically you cannot block access to Microsfot, AWS or Google ressources as many services are using them. Hence they are allowed on corporate firewalls.
If you don't have a good Secure Web Gateway which is also checking for maleware you are basically at a high risk. From my point of view this is the message at the end of the day.
Just my 2 cents 🙂