Remediation has been in the memcached documentation for years - I used it when I installed (since replaced) memcached at $WORK.
At the time, I thought "Nobody would be so silly as to leave that open, would they??" Then I did a quick search and found many publicly open. 'tain't like the bad guys have to wait on somebody else to compile a list.
I never thought about using the amplification against somebody - shows why I'm not in the black hat realm. Securing my own? Yup. Weaponizing? Never crossed my mind.