Along with the rapid development of indoor environments requiring stable high-speed transmission networks, the role of Wi-Fi in our lives is becoming more and more important. With the increase in access point deployments, the unauthorized access point is an important information security threat. However, most recent detection methods focus on the client-side and only use single-point measurements. The detection accuracy of these methods depends on the relative position of the measurement point and the evil twin; if the distance is too far, the overall accuracy drops drastically. To solve this problem, we propose an evil twin attack (ETA) detection approach to improve the lack of previous methods. First, we perform a series of data preprocessing methods to handle missing and update outlier data. Then, we propose a new sequence-based data segmentation method that can calculate the difference of periodic time series data. This detection method is more comprehensive and will not be affected by a single data. After that, we use AutoEncoder to detect evil twin attacks. The model identifies anomalies based on characteristic changes in the time-series Received Signal Strength (RSS) information distribution. Finally, we propose a novel voting mechanism to predict the final prediction. The difference from previous literature is that we use multiple sniffers instead of a single point to monitor large areas to compensate for the false alarm rate of single-point detection and make the system more practical. To verify the system's robustness, we build three actual attack scenarios, including line-of-sight (LOS), non-line-of-sight (NLOS), and a scenario where the evil twin appears in different locations. In terms of experimental results, our novel model can improve the accuracy by more than 20% to close to 96% accuracy. Furthermore, the performance of the voting mechanism can be improved by 6% compared to a single sniffer.